Administration — DNS Filtering

DNS Filtering page — showing the DNS blacklist and whitelist configuration with domain entries.

Navigate to Administration > DNS filtering. This feature lets you control which websites users on your network can access, by blocking or allowing specific domain names at the DNS level.

DNS filtering works by intercepting domain name lookups. When a user tries to visit a blocked website, the Abilis returns a "not found" response instead of the real IP address, so the page never loads. This is one of the simplest ways to block unwanted websites across an entire office.

DNS Blacklist

The DNS Blacklist sub-tab shows domains that are blocked. Underneath, the Abilis is running the DNS Blacklist feature on its DNS resource (RELAY-BLACKLIST=YES; per v9.0 reference manual ch37.5). The Resolved Domains table caches up to 2000 recently-looked-up names — both clean ones and ones that got blocked.

At the top: "List of requestors subject to blacklist filtering, but not listed here:" with a field showing the exclude list name (e.g. DNSLogExclude). A requestor in this context is a DNS client IP making lookups against the Abilis.

Below that:

DNS Blacklist section with a Banned domain tag — shows currently blocked domains.
Resolved Domains — shows which blocked domains users actually tried to access. Useful for monitoring.

To block a new website, click Ban new domain + (top right). A dialog appears:

Field	Details
Domain name	Enter the domain to block (e.g. `facebook.com`). Validation rules: — Allowed characters: lowercase/uppercase letters, numbers, dots, hyphens [a-z, A-Z, 0-9, ., -] — Each label (part between dots) can be 1–63 characters (e.g. `antek.it`) — Labels cannot start or end with a hyphen (e.g. `-label-.com` is invalid) — Level domain cannot be all-numeric (e.g. `myDomain.123` is invalid)

Click Submit to add, or Close to cancel.

The right panel shows Banned domain with the list of currently banned domains. Entries can be removed by clicking the × next to them.

DNS Whitelist

The DNS Whitelist sub-tab shows domains that are always allowed, even if they match a blacklist pattern. This is useful for exceptions — for example, blocking all social media but allowing LinkedIn for the sales team.

Fields at the top:

List of requestors subject to blacklist filtering, but not listed here: DNSLogExclude
List of Whitelist-enabled requestors: DNSWhiteClients

Below:

DNS Whitelist checkbox (enable/disable) with Whitelisted domain tag input.
Resolved Domains — shows which whitelisted domains have been accessed. Click Clear list of resolved domains to reset.

The requestor lists — DNSLogExclude, DNSWhiteClients, and DNSBlackBypass — are managed in Tools > Lists. Each one holds IP addresses of DNS clients (the "requestors"). They map directly to the DNS resource parameters RELAY-LOG-EXCLUDE, RELAY-WHITELIST-CLIENTS, and RELAY-BLACKLIST-BYPASS in v9.0 ch37.5.

Anteklab Technical Support Email: tem@antek.it
Tel: +39 0376 16262,27

← All Users Calls System →