EFW Support

Hello,

with endian firewall, you can block the sites you want, but just add https to any site, it opens! What is the dear  solution to block https also?

thank you

Hi Med,

You can goto outgoing firewall and block https for that particular website.



Cheers!
sree.

I never thought of doing it for just one site. That is excellent!
It works with transparent that way too then I imagine since it is the firewall, not the proxy blocking it!
But, the firewall would block by IP, right? I would have to know the IP, and it would have to be relatively constant I imagine.

would the urlregexplist block that file? I think if you use regular (not transparent) proxy, block 443 on the firewall, but allow on the content filter? I think that is right?
This is what I am trying, but not quite succeeding with yet, so I am not sure. There are a lot of settings to figure out. So, I think should work, but it doesn't work for me yet.

Karl,
What you are really trying to block?. Could you elaborate little


Sree

Sure. Youtube HTTPS bypasses my youtube for schools settings.

and Google secure bypasses my safe search settings.
Google has a workaround for urlregex or DNS.
From Google:
"To utilize the no SSL option for your network, configure the DNS entry for www-google-com to be a CNAME for nosslsearch-google-com." But I can't make a CNAME record for a zone I am not in authority of in Windows 2008 R2 server so I try regex rules to rewrite https-www-google-com to https-nosslsearch-google-com.
(And also block https-encrypted-google-com) (No clickable links allowed in this forum.)

This works on another firewall I run, but hasn't worked yet for me on EFW 2.5.1. I don't know if my urlregex file is ever working though. It is always blank again after I go to check on it in SSH. I am hoping for resolution on that in another topic.