Blocking undesirable domains using BIND

Maxim Khitrov mkhitrov at
Thu Dec 27 20:37:01 PST 2007

On Dec 27, 2007 7:16 PM, Kevin Kinsey <kdk at> wrote:
> Maxim Khitrov wrote:
> > Hello,
> >
> > I'm currently setting up a new firewall for my home network using
> > FreeBSD 7. The firewall will also act as our local name server
> > (authoritative for the local domain, and caching for everything else).
> > One of the things I'd like to do with it is use BIND to block various
> > undesirable domains (ad servers, malicious sites, etc.). The plan is
> > to have a separate BIND config file which is included in the main one.
> Just a question, and I'm not trying to cast doubt on your plan; I'm
> curious why using BIND for this purpose instead of a proxy, which is
> a more typical application as I understand it?
> Again, I'm not trying to convince you otherwise or say that using
> BIND is a bad idea.  It's just that I'm curious because we use
> Squid for this sort of thing, and I was wondering why BIND instead?
> Kevin Kinsey

I also need a local name server for my domain. That's the primary
function, and this filtering stuff is just an added bonus. It'll also
be nice to bypass the ISP name servers, which haven't been very
reliable lately.

- Max

More information about the freebsd-questions mailing list