← Back to Docs

DNS Rewrites

What Are DNS Rewrites

DNS rewrites let you return a custom IP address (or another hostname) in response to a DNS query for a specific domain. This happens before any routing policy is applied, making it useful for local service redirection, captive portal bypasses, and intercepting hardcoded DNS resolvers.

Common Use Cases

  • Local hostname resolution: Make nas.home resolve to 192.168.1.50 without a local DNS server
  • Intercept DoH resolvers: Return a blocked address for dns.google or cloudflare-dns.com to prevent apps from bypassing TLSOps filtering
  • Redirect a service: Send a domain to a local IP to use a self-hosted mirror

Adding a DNS Rewrite

  1. Go to the DNS Rewrites tab in the dashboard
  2. Click Add Rewrite
  3. Enter the domain — for example nas.home or dns.google
  4. Enter the IP address or hostname to return
  5. Click Save — the rewrite applies to the next DNS query for that domain, network-wide

Removing a Rewrite

  1. Go to the DNS Rewrites tab in the dashboard
  2. Find the entry and click Delete
  3. The domain resolves normally again from the next query onward

Notes

  • Rewrites override all upstream DNS responses — they take precedence over real DNS records
  • Rewrites do not route traffic — they only change what IP address is returned. For routing changes, use Domain Routing
  • Wildcard rewrites (*.home) are supported