Custom Rules

Fine grained control over individual domain names.

πŸ“˜

TLDR

Custom Rules are basically a hosts file, with wildcard support. Block, redirect or spoof any domain to any IP.

What are Custom Rules

Custom Rules are the basic building blocks of Control D, and allow you to create fine grained rules for specific domain names. Think of these as a hosts file in the cloud, with wildcard support.

You can have up to 10,000 Custom Rules.

To create a custom rule, choose a Profile and click Edit. Then navigate to the Custom Rules section.

Rule Actions

Much like with Services (which are just collections of Custom Rules), one of 3 rule types can be attached to any domain name.

Block

A BLOCK action will prevent the domain from loading, and will effectively make it inaccessible from a Device that enforces a Profile.

Bypass

A BYPASS rule will resolve the domain to its true IP address from Authoritative DNS. This is useful to override Filters, Services, or the Default Rule.

Redirect

A REDIRECT rule will spoof the domain via a proxy location or specific IP address chosen by you.

Custom Rules can be grouped into Folders, which can have their own actions.

Create Private Domains

If you wish to create a private domain, when you make a Custom Rule, choose Redirect and then select IP or Hostname instead of Proxies.

This will allow you to input your own IPv4 and IPv6 (or CNAME) records. Any Device that enforces this Profile will be able to resolve these custom domains, which do not exist in public DNS.

Rule Format

Custom rules can be exact or use wildcards. All of the following are valid:

Domain and RuleHow it works nowHow it will work in future
domain.com -> BLOCKBlocks domain.com and all subdomainsOnly blocks domain.com, not subdomains
*.domain.com -> BLOCKBlocks all subdomains of domain.com but NOT domain.comBlocks all subdomains of domain.com but NOT domain.com
server-*.domain.com -> BLOCKBlocks server-01.domain.com and server-anything-goes-here.domain.comBlocks server-01.domain.com and server-anything-goes-here.domain.com