Hello,
It would be nice if one could list multiple hosts in the tls-host match. Right now, you have to add a ton of rules, one for each site. This is hard to maintain and clutters up the firewall rules, especially since one has to reduplicate everything for IPv4 and IPv6.
Thanks!
James
Yes, please!
+1 to that. I didn’t even realize it’s not working, added a ton of comma separated hosts and to my surprise it’s not working.
I’m trying to only allow specific sites to some IPs + the windows and antivirus updates to those machines. The idea was to use TLS host match to allow updates, antivirus and some local and google services and reject everything else on 443.
Anybody with a better way of doing this?
Thx