Then it seems to be a DNS caching issue with dynamic changed IPs (two are completely different now) as mentioned in your quoted FAQ. Any idea/proposal for changing the DNS TTL in NetGuard?Only domain names with the same IP address will be grouped. Please be aware that IP addresses are pretty dynamic these days and that one domain name can have dozens of IP addresses.
BTW: I block/allow the DNS name not the specific IP in the rules?
Thanks