From cf2cb31e06aae850f6cb76e305c03d3201f393dd Mon Sep 17 00:00:00 2001 From: yokoffing <11689349+yokoffing@users.noreply.github.com> Date: Sat, 29 Jun 2024 11:51:01 -0400 Subject: [PATCH] Block access to iCloud Private Relay --- README.md | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index b4f2944..83bd4b3 100644 --- a/README.md +++ b/README.md @@ -194,6 +194,13 @@ Denylist entries are always blocked. The entries below may further harden some p
+ +### Block access to iCloud Private Relay + +Devices that use iCloud Private Relay may ignore their DNS settings, so NextDNS cannot protect them. A few other DoH providers block it by default. + + mask.icloud.com + ### Apple tracking domains [1](https://unofficialbird.com/mysk_co/status/1588308341780262912) [2](https://github.com/nextdns/metadata/pull/1132) [3](https://github.com/badmojr/1Hosts/issues/536) [4](https://gizmodo.com/apple-iphone-analytics-tracking-even-when-off-app-store-1849757558) Not currently in NextDNS's [Native Tracking Protection](https://github.com/yokoffing/NextDNS-Config#native-tracking-protection-1) [list](https://github.com/nextdns/native-tracking-domains/blob/main/domains/apple): [1](https://raw.githubusercontent.com/hagezi/dns-blocklists/main/wildcard/native.apple.txt) @@ -249,7 +256,7 @@ If you're still having issues, try [these](https://raw.githubusercontent.com/hag ### Apple device updates [1](https://github.com/badmojr/1Hosts/issues/536) [2](https://github.com/badmojr/1Hosts/issues/562) [3](https://github.com/nextdns/metadata/pull/1132#issuecomment-1331733770) -A [known tracking domain](https://gizmodo.com/apple-iphone-analytics-tracking-even-when-off-app-store-1849757558), but it's needed for device updates +A [known tracking domain](https://gizmodo.com/apple-iphone-analytics-tracking-even-when-off-app-store-1849757558), but it's needed for device updates. xp.apple.com