Working with Whitelist and Blacklist

Working with Whitelist and Blacklist

Often times it can be helpful to fully block or allow a domain based on desired result. The White/Black List tab allows you to build and manage custom block and allow lists and associate these lists to all policies (global) or to a specific policy in case you wish to use on specific sites/networks.



Create List

To create a list select "New" from top right of White/Black List tab page. You can name the list and add a description to help better understand the usage of the list. If you wish to have this list apply to all polices at all sites you can select "Global". Keep in mind that whitelist entries override blacklist entries and so Global whitelist entries will override local and global blacklist entries. You can select multiple lists as global.



Edit List

A list can be used to specifically allow, block, or both depending on desired result. Simply select the Allow tab to add whitelisted entries and the Block tab to add blacklisted entries. 

You can enter any domain for fully qualified domain with syntax as followed:

aol.com                       (This will effect the domain only and ignore sub-domains)
*.aol.com                  (This will effect the host/sub-domain only and ignore the domain)

We do not allow HTTP or URLs as only domain based entries can be processed.

Further Examples:
Blacklisting *.yahoo.com would block news.yahoo.com but allow yahoo.com.
Blacklisting yahoo.com will block yahoo.com but allow mail.yahoo.com.

In order to fully block or allow a domain/website, it is best to create two entries:
yahoo.com
*.yahoo.com





Order of White/Black List Rules

Here is the order of processing within the system to give you a better understanding of how rules are applied. In short Whitelists override Blacklists and Global Lists override all. Entry type is listed with order of priority:

  1. Global Whitelist
  2. Global Blacklist
  3. Standard Whitelist
  4. Standard Blacklist


Apply White/Black List to Policy

Global lists do not need to be applied to policy as they automatically work across your entire account. If you wish to assign a list to a specific policy for the use at specific sites/networks this can be done from within your policy tab. First you must navigate to your policy tab and select the custom policy you wish to apply your list to. White/Black lists cannot be assigned to default policies.




Now select "Edit Policy" at upper right corner. Here you can select the "White/Black List" field and choose any number of custom lists you wish to apply to the current policy. Global list do not need to be selected. Now, simply save the policy and your White/Black list settings will be applied to all networks with the selected policy.









    • Related Articles

    • Safe Search Supported Search Engines

      When activating Forced Safe Search in Policy, ScoutDNS will forward all request of supported search engines to their restricted search domains. Only search engines with domain based restriction controls can be supported.   Safe Search will disable ...
    • Configurable Objects and Their Associations

      ScoutDNS is built around object-based configuration to make management and deployment at scale easier. In this article we will explore the different configurable objects and explain their associations. Allow/Block List Allow/Block List Description ...
    • Organizations - Configuration and Management of Multi-Tenant Use

      ScoutDNS provides two levels of tenancy. The primary inherent level allows any operator to be a member of any number of accounts and could have different roles depending on each account setting. The second level enabled though the Organizations tab ...
    • Roaming Clients / Device Agents - Setup, Configure, and Manage

      ScoutDNS provides device agents for organizations what wish to cover devices with DNS layer protection on and off the network. The ScoutDNS device agent is an extremely lightweight application best installed on managed devices where administrative ...