1. If you have the option to resolve names via SOCKS in the SOCKS client, then no UDP traffic goes through, just the SOCKS client sends the name to the server instead of the IPv4 / IPv6 address and the server itself resolves it. At the same time, it is possible to differentiate access by names and does not present problems.
2. If this option is not set in the SOCKS client, then DNS queries do not get into the proxy at all, most likely even when using the soxifier.
3. 3proxy can filter any traffic, incl. UDP, but this is not required to allow access by hostname
4. 3proxy supports name resolution over TCP (DNS servers support not only UDP but also TCP). Incl. it is not difficult to send DNS requests (namely, full-fledged DNS requests) through the parent proxy over TCP. It doesn't make much sense to let them over UDP through the parent proxy, because the control connection to the proxy is still established via TCP.
5. 3proxy has a DNS proxy service (dnspr) that allows you to allow/block DNS requests by domains. You can run DNS through this service and make sure that these requests never reach the provider.
Which of these you need or do not need, I can’t imagine, because. instead of describing the task, you described your ideas, which are not correct and your question comes from a bunch of incorrect premises and the problem is not clear from it.