Looking to further lockdown the network by adding some common wildcard domain names which typically track and/or serve up ads or malware. For example, I noticed 3 of my top 5 most blocked in the Analytics page were:
jnn-pa.googleapis.com
firebaseinstallations.googleapis.com
userlocation.googleapis.com
So i've gone ahead and added *.googleapis.com to the Denylist to not miss any new subdomains. Might be a bit overkill I know, but what are some other wildcards to add to the list? Thanks.
Great job on taking proactive measures to strengthen your network security! Here are some wildcard domain names that you might want to consider adding to your NextDNS Denylist to block ads or malware:
*.doubleclick.net - DoubleClick is a popular advertising agency owned by Google, so it's likely that many ads come from this domain.
*.googletagmanager.com - Another Google-owned domain commonly used for tracking and analytics.
*.googlesyndication.com - Another domain used by Google for advertising.
*.adbrite.com - A popular ad network.
*.zedo.com - Another popular ad network.
*.adsrvr.org - Used by many different ad networks and tracking companies.
*.clickbank.net - An affiliate marketing network that's also notorious for hosting scammy and malicious ads.
*.popads.net - Pop-up and pop-under ads.
*.adscendmedia.com - Another affiliate marketing network that's often associated with spammy ads or scams.
Of course, the effectiveness of these wildcards will depend on your specific browsing habits and the types of ads or malware you typically encounter. It's always a good idea to keep monitoring your NextDNS Analytics page and adjusting your Denylist accordingly.