Welcome, Guest. Please login or register.
Did you miss your activation email?
Sunday 22 December 2024, 01:24:00 am

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14262 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  EFW SMTP, HTTP, SIP, FTP Proxy Support
| | |-+  Frustrating black list problem
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Frustrating black list problem  (Read 15832 times)
amac
Jr. Member
*
Offline Offline

Posts: 3


« on: Thursday 29 September 2011, 08:14:03 am »

Hi All

Im having some problems using the web interface to blacklist all internet domains.
I have ** in blacklist. It will occassionly work (just when i registered for this site, it worked and blocked access, but then i reloaded the page and it was fine).
I have also tried having some explicitly listed sites in there which work fine for me. (ie if i put facebook.com in it will block that)

It is the first policy in the access policy tab, and the second filter in the content filter behind only the default filter.

Any help to get this working correctly would be appreciated..
im running vesion 2.4.1

Andy

Logged
mrkroket
Hero Member
*****
Offline Offline

Posts: 495


« Reply #1 on: Friday 30 September 2011, 03:13:01 am »

No, to create a deny all internet domains rule, you don't need to specify any domain, just create a rule like that:
 Source: ANY   Dest: ANY    Access: DENY ACCESS

That rule blocks all.
Rules are checked in order, the first to meet the conditions is used. So your deny all must be the last one.
About blocking sites. Remember that on HTTP proxy you must put a leading dot on domains. You must use .facebook.com , and not facebook.com

Rules to allow facebook to 192.168.0.10, allow ALL to Wifi users except facebook,  and deny everything else:
Rule 1:  Source: 192.168.0.10  Dest: .facebook.com  Access: ALLOW
Rule 2:  Source: BLUE  Dest: .facebook.com  Access: DENY
Rule 3:  Source: BLUE  Dest: ANY  Access: ALLOW
Rule 4:  Source: ANY  Dest: ANY  Access: DENY ACCESS

I think you get the idea. Rule order is important, changing the order on rules 2 and 3 makes the BLUE facebook rule useless (as the order rules fires before, and allow the user to reach facebook).

Logged
amac
Jr. Member
*
Offline Offline

Posts: 3


« Reply #2 on: Friday 30 September 2011, 03:17:05 am »

Sorry i should have mentioned that i need the PC to be able to access certain internet sites. But only those two sites.
Logged
mrkroket
Hero Member
*****
Offline Offline

Posts: 495


« Reply #3 on: Saturday 01 October 2011, 12:20:56 am »

Whatever, I wrote an example to show you how rules work.
It's up to you to create the rules the way you need.
Logged
amac
Jr. Member
*
Offline Offline

Posts: 3


« Reply #4 on: Saturday 01 October 2011, 01:52:06 am »

Hi.
Thanks for taking the time to write a response.

I totally understand the concept of rules and the way they are processed. What i am having problems understanding is this:
When i turn the blanket ban on, sometimes it will work (IE i when i hit post here sometimes it will say "There is a blanket ban in place and this website is not a whitelisted website"). Then whenever i click on Google Mail (Which is what our company uses for its email client) it de-activates the blanket ban.

Andy
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.078 seconds with 18 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com