Block or Sinkhole a Wildcard Domain in Windows DNS

We are going to block the domain via Windows DNS. A text tutorial and video guide have been posted for your viewing. You can sinkhole the domain to a null address like however in our case we are going to send the DNS Requests to for tracking.

  • Open up Windows DNS Manager
  • Right click on Forward Lookup Zones and select a “New Zone”.
  • Select “Primary Zone” then click next.
  • Select the option that best suits your environment, for me I just wanted to apply this to my end user domain “cloudrigs”.
  • We are going to block “”
  • Click “Next”
  • Click “Finish”
  • Now, we are going to add 2 “A Host” entry records to cover the root domain and the subdomains for
  • Start by right clicking on “” and select “New Host”
  • Entry 1 – Wildcard for all subdomains of *
    • Name: *
    • IP Address:
    • Click “Add Host”
  • Entry 2 – Root Domain of
    • Name:
    • IP Address:
    • Click “Add Host”
  • You will now have 2 “A Host” entries shown below
  • When your users try to access or any of the subdomains under * your users will now be denied and will not be able to reach this page.

Leave a reply:

Your email address will not be published.

Site Footer