So I am getting emails about some bad DNS queries:
"INDICATOR-COMPROMISE Suspicious .tk dns query"
I have looked in to this, and for the most part, these are "legit" drops, but not ALL are...
Myself, I have signed up for a free .tk domain, and set it to my external IP, but I cannot resolve my domain to an IP because of these drops.
How can I "whitelist" MY .tk domain, while still blocking the others?
This thread was automatically locked due to age.