Commonly Whitelisted Domains

Click the edit button at the bottom of the post.

Not sure if this is where I need to add this but vudu needs apicache.vudu.com whitelisted in order to work

I was able to get CNN videos to load using data.cnn.com. I now have the following for CNN: www.cnn.com, cnn.com, cdn.cnn.com and data.cnn.com.
I found this by watching the Query Log when attempting to watch a video.

A couple things:
for xbox live messages to work, I had to whitelist:
client-s.gateway.messenger.live.com
For ‘messages for web’ to display a qr code I had to whitelist:
www.google-analytics.com
There were a couple others I whitelisted to get the qr code to appear but this one actually worked after the whitelist.

Just in case anyone else ran into Twitter embeds not working in Google News for iOS, whitelisting cdn.syndication.twimg.com worked for me.

Scratch Editor
Symptom: Crash of the Editor/“Non supported navigator” message.
pihole -w www.google-analytics.com

As of last week Live Achievements stopped updating and v20.events.data.microsoft.com is being blocked in the Pi-hole logs. Adding this to the whitelist restored Live Achievements updates.

pihole -w v20.events.data.microsoft.com

1 Like

I was unable to load google maps data (photos, maps, locations, location info, etc) until reaching a timeout (15-20 seconds) without unblocking app-measurement.com

Anyone else?

Access to OneDrive from within Office365 apps

A login loop was resulting from accessing OneDrive from within Office365 apps continually asking for Microsoft username and password. This seems to be resolved via whitelisting login.microsoftonline.com . Please also see this Reddit post:
Microsoft Office 365 Blocked : Pihole

Facebook on iOS needs b-graph.facebook.com whitelisted in order to login to the app. Editing post to add this entry now.

Twitch Client
Wont Work Unless you Whitelist and it can be more didn’t Test that much
From what i can tell this was implemented on the last version of Twitch Client

pihole -w s.amazon-adsystem.com
pihole -w c.amazon-adsystem.com
pihole -w countess.twitch.tv
pihole -w pubsub-edge.twitch.tv
pihole -w cdn-gl.imrworldwide.com
1 Like

Apple Music streaming tracks not playing with (s.mzstatic.com) blocked.

Only realised when removing the SIM card out of my daughters iPhone her music stopped working with error “could not connect to server”

If you allow Apple Music to use mobile data, even when in wifi mode; if it can’t connect that way it will automatically fall back to mobile data.

So yeah we all allow mobile data, so never realised. Will now add to wiki.

Cheers.

I’m blocked from using Zelle within Citibank online. I see these logs, how do I whitelist these *.online-metrix.net?

Apr  1 21:33:05 dnsmasq[16398]: query[A] h-online.citi.online-metrix.net from my.ip.ad.dr
Apr  1 21:33:05 dnsmasq[16398]: forwarded h-online.citi.online-metrix.net to 1.0.0.1
Apr  1 21:33:05 dnsmasq[16398]: reply h-online.citi.online-metrix.net is 192.225.159.21
Apr  1 21:33:06 dnsmasq[16398]: query[A] 89oebq5k-84efa02cae5be555b16349b8d9ad71aea395c8f1-sac.d.aa.online-metrix.net from my.ip.ad.dr
Apr  1 21:33:06 dnsmasq[16398]: forwarded 89oebq5k-84efa02cae5be555b16349b8d9ad71aea395c8f1-sac.d.aa.online-metrix.net to 1.0.0.1
Apr  1 21:33:06 dnsmasq[16398]: reply 89oebq5k-84efa02cae5be555b16349b8d9ad71aea395c8f1-sac.d.aa.online-metrix.net is 192.225.158.3
Apr  1 21:33:07 dnsmasq[16398]: query[A] aa.online-metrix.net from my.ip.ad.dr
Apr  1 21:33:07 dnsmasq[16398]: forwarded aa.online-metrix.net to 1.0.0.1
Apr  1 21:33:07 dnsmasq[16398]: reply aa.online-metrix.net is 192.225.158.2
Apr  1 21:33:07 dnsmasq[16398]: query[A] device-metrics-us.amazon.com from 10.141.165.190
Apr  1 21:33:10 dnsmasq[16398]: reply a239.gi3.akamai.net is 23.223.157.146
Apr  1 21:33:10 dnsmasq[16398]: reply a239.gi3.akamai.net is 23.223.157.138
Apr  1 21:33:22 dnsmasq[16398]: query[PTR] 66.165.141.10.in-addr.arpa from my.ip.ad.dr
Apr  1 21:33:22 dnsmasq[16398]: forwarded 66.165.141.10.in-addr.arpa to 10.141.165.1
Apr  1 21:33:22 dnsmasq[16398]: reply my.ip.ad.dr is mymac.com
Apr  1 21:33:31 dnsmasq[16398]: query[A] www.citi.com from my.ip.ad.dr
Apr  1 21:33:31 dnsmasq[16398]: forwarded www.citi.com to 1.0.0.1
Apr  1 21:33:31 dnsmasq[16398]: reply www.citi.com is <CNAME>
Apr  1 21:33:31 dnsmasq[16398]: reply san.www.citi.com.edgekey.net is <CNAME>
Apr  1 21:33:31 dnsmasq[16398]: reply e16976.x.akamaiedge.net is 184.87.60.148
Apr  1 21:33:32 dnsmasq[16398]: query[A] nexus.ensighten.com from my.ip.ad.dr
Apr  1 21:33:32 dnsmasq[16398]: /etc/pihole/gravity.list nexus.ensighten.com is 0.0.0.0
Apr  1 21:33:34 dnsmasq[16398]: query[A] citi.bridgetrack.com from my.ip.ad.dr
Apr  1 21:33:34 dnsmasq[16398]: /etc/pihole/gravity.list citi.bridgetrack.com is 0.0.0.0
Apr  1 21:33:35 dnsmasq[16398]: query[A] h-online.citi.online-metrix.net from my.ip.ad.dr
Apr  1 21:33:35 dnsmasq[16398]: forwarded h-online.citi.online-metrix.net to 1.0.0.1
Apr  1 21:33:35 dnsmasq[16398]: reply h-online.citi.online-metrix.net is 192.225.159.21

Apr  1 21:35:39 dnsmasq[16398]: reply e17437.dscb.akamaiedge.net is 96.17.64.147
Apr  1 21:35:44 dnsmasq[16398]: query[A] nexus.ensighten.com from my.ip.ad.dr
Apr  1 21:35:44 dnsmasq[16398]: /etc/pihole/gravity.list nexus.ensighten.com is 0.0.0.0
Apr  1 21:35:45 dnsmasq[16398]: query[A] citi.com.ssl.sc.omtrdc.net from my.ip.ad.dr
Apr  1 21:35:45 dnsmasq[16398]: forwarded citi.com.ssl.sc.omtrdc.net to 1.0.0.1
Apr  1 21:35:45 dnsmasq[16398]: reply citi.com.ssl.sc.omtrdc.net is 66.235.128.243
Apr  1 21:35:48 dnsmasq[16398]: query[A] 89oebq5k-107474e8b81618c442670eeb96048b53ce8de570-sac.d.aa.online-metrix.net from my.ip.ad.dr
Apr  1 21:35:48 dnsmasq[16398]: forwarded 89oebq5k-107474e8b81618c442670eeb96048b53ce8de570-sac.d.aa.online-metrix.net to 1.0.0.1
Apr  1 21:35:48 dnsmasq[16398]: reply 89oebq5k-107474e8b81618c442670eeb96048b53ce8de570-sac.d.aa.online-metrix.net is 192.225.158.3
Apr  1 21:35:11 dnsmasq[16398]: query[A] h-online.citi.online-metrix.net from my.ip.ad.dr
Apr  1 21:35:11 dnsmasq[16398]: forwarded h-online.citi.online-metrix.net to 1.0.0.1
Apr  1 21:35:11 dnsmasq[16398]: reply h-online.citi.online-metrix.net is 192.225.159.21
Apr  1 21:35:22 dnsmasq[16398]: query[A] nexus.ensighten.com from my.ip.ad.dr
Apr  1 21:35:22 dnsmasq[16398]: /etc/pihole/gravity.list nexus.ensighten.com is 0.0.0.0
Apr  1 21:35:22 dnsmasq[16398]: query[A] mpsnare.iesnare.com from my.ip.ad.dr
Apr  1 21:35:22 dnsmasq[16398]: /etc/pihole/gravity.list mpsnare.iesnare.com is 0.0.0.0
Apr  1 21:35:23 dnsmasq[16398]: query[A] h-online.citi.online-metrix.net from my.ip.ad.dr
Apr  1 21:35:23 dnsmasq[16398]: forwarded h-online.citi.online-metrix.net to 1.0.0.1
Apr  1 21:35:23 dnsmasq[16398]: reply h-online.citi.online-metrix.net is 192.225.159.21
Apr  1 21:35:28 dnsmasq[16398]: query[A] 89oebq5k-a730336c3ac398cc37058315f73ff25b1bbd143a-sac.d.aa.online-metrix.net from my.ip.ad.dr
Apr  1 21:35:28 dnsmasq[16398]: forwarded 89oebq5k-a730336c3ac398cc37058315f73ff25b1bbd143a-sac.d.aa.online-metrix.net to 1.0.0.1
Apr  1 21:35:28 dnsmasq[16398]: reply 89oebq5k-a730336c3ac398cc37058315f73ff25b1bbd143a-sac.d.aa.online-metrix.net is 192.225.158.3
Apr  1 21:35:28 dnsmasq[16398]: query[A] aa.online-metrix.net from my.ip.ad.dr
Apr  1 21:35:28 dnsmasq[16398]: forwarded aa.online-metrix.net to 1.0.0.1
Apr  1 21:35:28 dnsmasq[16398]: reply aa.online-metrix.net is 192.225.158.2

All this Reddit thread suggests to WL nexus.ensighten.com, agreed?

Hi, could you please help me out how can I add this list in pi-hole as I am running in docker. Thank you so much

Does anyone have CNN white list??

For GlobalTV and CTV GO Android App you need imasdk.googleapis.com (video ads :frowning: )

For Brave Browser’s rewards program: ads-serve.brave.com

Some Roku channels such as PBS require advertising or they don’t work. https://help.pbs.org/support/solutions/articles/12000047549-when-i-try-to-play-a-video-on-my-roku-device-the-pbs-channel-shuts-down-and-i-m-returned-to-the-roku

As I’m too stupid to edit the first post to add the information directly, here is some addition:
For sueddeutsche.de (German newspaper), it seems to be necessary to whitelist
c.amazon-adsystem.com
to avoid the overlaying pop-up that asks you to deactivate ad-blockers.

Cheers,
Matthias