Wildcard Support for Cloud DNS Filtering

From today, Rawstream Network Security adds the capability to allow or block domains based on wildcards. Wildcard support is being rolled out across all our DNS IPs right now and will be complete across the next few hours. The entries will match on the full domain queried, including subdomains.

As an example: a wildcard entry for sw*.apple.com will match all the domains (swcdn.apple.com, swdownload.apple.com, swquery.apple.com, swscan.apple.com) used by Apple products for software updates.

Wildcard support allows IT admins to set granular policies to allow or deny access to specific subdomains while still allowing access to other subdomains or the parent domain.

Subdomains can be listed in the the Allow and Block. A block list entry for subdomain.parentdomain.com will block the subdomain but allow access to the parent domain.

Using Wildcards

The wildcard character is the * (asterisk). The * character is supported anywhere in a block or allow list entry, including the beginning or end of an entry. The following are all valid list entries:

  • *test.com
  • *.test.com
  • beacon*.test.com
  • sub.test.*

Existing allow and block list entries without the wildcard character will continue to work unchanged.

For support contact us at hello@rawstream.com

Related posts

Track Desktop Applications

Content filtering products limit themselves to reporting websites browsed. Not Rawstream! We track desktop applications used and the time spent in them. This is valuable data for at two reasons: license management, and tracking shadow IT. Rawstream's Application Usage data help you...

Product Update: New Reporting for Rawstream Web Filtering

Rawtream Web Filtering is a powerful web security solution for all your endpoints. A new report has been added that makes it very simple to track agent activity and deployed versions. Last Agent Activity The Last Seen column shows the last time each agent was active. Time is in the...

Blocking Zoom

Blocking Zoom

Rawtream Network Security is a powerful DNS-based filter for network-wide security. The EU is just the latest in a long and growing list of institutions either advising against, or outright banning Zoom. Google and SpaceX have banned Zoom from their networks, as has Taiwan, US school...