themickman007
commented
10 years ago I couldn't get this to work for me. Is it only forwarding www.netflix.com specifically or all subdomains eg signup.netflix.com. Also I had trouble forwarding ports through iptables as each site needs to have it's ip entered individually which is a big job and prone to changing often. Bind was no help either as it forwards to other dns servers and I am not using dnsmasq in my configuration so I didn't test.
I am not sure if it would work, but perhaps you could use socat instead of sni with no verification (for these machines which do not take sni). You can route the incoming port (through dnsmasq or bind 9 or iptables) and have one instance running for each site you are looking to access.
i.e. socat TCP-LISTEN:810,reuseaddr,fork OPENSSL:www.netflix.com:443,verify=0 socat TCP-LISTEN:811,reuseaddr,fork OPENSSL:www.hulu.com:443,verify=0
Tried it directly from vps and works.