Monthly Archives: August 2025

A Curious Discovery: Split DNS and iCloud Private Relay on macOS

Posted on August 19, 2025 | Leave a comment

I ran into an interesting (and frustrating) networking quirk recently that I thought was worth sharing.
If you’re running Split DNS at home—where a subdomain resolves to your WAN IP externally but your router maps it to a different internal LAN IP when you’re inside the network—you might expect things to “just work.” And usually, they do.

But on macOS, if you have iCloud’s “Private Relay” feature enabled, all of your web browsers may fail to resolve that subdomain to the local LAN address. Instead, they try to go out to the WAN IP, breaking your internal routing.

What makes this tricky is that the behavior doesn’t show up in basic tests. Using tools like nslookup or ping in Terminal still returns the correct local IP. Yet in Safari, Chrome, and Brave, the same domain wouldn’t connect to my internal server. The culprit? iCloud Private Relay.

I had assumed that Private Relay would only affect Safari traffic, but it actually interfered with DNS resolution across the system for all browsers. Once I disabled it, everything immediately started working the way it was supposed to.

So, if you’re running Split DNS at home and notice that your browsers refuse to resolve local resources—even though command‑line tools work fine—check whether iCloud Private Relay is enabled. Turning it off solved the problem for me.

Hopefully this tip saves someone else a few hours of head‑scratching.

Leave a comment

Posted in Blog

It’s official: CISSP endorsed today

Posted on August 15, 2025 | Leave a comment

Last month I passed the CISSP exam, the journey didn’t stop there. Before you can officially call yourself CISSP certified, there’s one last thing to take care of—the endorsement process.

What’s the Endorsement Process About?

Basically, ISC2 checks that:

  • You actually have at least five years of cybersecurity work experience.
  • You played fair on the exam and didn’t cheat.

You’ll need to complete this step, and pay the ISC2 membership fees, before you can really say you’re CISSP certified.

Here’s some personal news—I’m officially CISSP certified as of today, valid for the next three years! To keep it going, you need to earn Continuing Professional Education (CPE) credits. I’ve put together a list of places where you can get free CPE credits to help with that.

Where to Find Free CPE Credits

Here are some solid options to earn free CPE credits:

Bonus tip: Taking other ISC2 certifications can often count toward your CISSP renewal credits too.

A Few Tips for Renewing Your CISSP

  • Keep an eye on your CPE credits so you don’t have to scramble last minute.
  • Mix it up with webinars, labs, courses, and events to keep learning interesting.
  • Check ISC2’s website every now and then to stay on top of any changes.

Good luck if you’re on this journey—and congrats to anyone who’s passed the exam and completed the endorsement! You’ve earned it.

Leave a comment

Posted in Blog