EFW Support
Welcome,
Guest
. Please
login
or
register
.
Did you miss your
activation email?
Wednesday 27 November 2024, 07:14:23 pm
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
The Latest Endian Firewall is now available for download
HERE
14261
Posts in
4377
Topics by
6517
Members
Latest Member:
Sandro
Search:
Advanced search
EFW Support
Support
EFW SMTP, HTTP, SIP, FTP Proxy Support
Frustrating black list problem
0 Members and 1 Guest are viewing this topic.
« previous
next »
Pages:
[
1
]
Author
Topic: Frustrating black list problem (Read 13805 times)
amac
Jr. Member
Offline
Posts: 3
Frustrating black list problem
«
on:
Thursday 29 September 2011, 08:14:03 am »
Hi All
Im having some problems using the web interface to blacklist all internet domains.
I have ** in blacklist. It will occassionly work (just when i registered for this site, it worked and blocked access, but then i reloaded the page and it was fine).
I have also tried having some explicitly listed sites in there which work fine for me. (ie if i put facebook.com in it will block that)
It is the first policy in the access policy tab, and the second filter in the content filter behind only the default filter.
Any help to get this working correctly would be appreciated..
im running vesion 2.4.1
Andy
Logged
mrkroket
Hero Member
Offline
Posts: 495
Re: Frustrating black list problem
«
Reply #1 on:
Friday 30 September 2011, 03:13:01 am »
No, to create a deny all internet domains rule, you don't need to specify any domain, just create a rule like that:
Source: ANY Dest: ANY Access: DENY ACCESS
That rule blocks all.
Rules are checked in order, the first to meet the conditions is used. So your deny all must be the last one.
About blocking sites. Remember that on HTTP proxy you must put a leading dot on domains. You must use .facebook.com , and not facebook.com
Rules to allow facebook to 192.168.0.10, allow ALL to Wifi users except facebook, and deny everything else:
Rule 1: Source: 192.168.0.10 Dest: .facebook.com Access: ALLOW
Rule 2: Source: BLUE Dest: .facebook.com Access: DENY
Rule 3: Source: BLUE Dest: ANY Access: ALLOW
Rule 4: Source: ANY Dest: ANY Access: DENY ACCESS
I think you get the idea. Rule order is important, changing the order on rules 2 and 3 makes the BLUE facebook rule useless (as the order rules fires before, and allow the user to reach facebook).
Logged
amac
Jr. Member
Offline
Posts: 3
Re: Frustrating black list problem
«
Reply #2 on:
Friday 30 September 2011, 03:17:05 am »
Sorry i should have mentioned that i need the PC to be able to access certain internet sites. But only those two sites.
Logged
mrkroket
Hero Member
Offline
Posts: 495
Re: Frustrating black list problem
«
Reply #3 on:
Saturday 01 October 2011, 12:20:56 am »
Whatever, I wrote an example to show you how rules work.
It's up to you to create the rules the way you need.
Logged
amac
Jr. Member
Offline
Posts: 3
Re: Frustrating black list problem
«
Reply #4 on:
Saturday 01 October 2011, 01:52:06 am »
Hi.
Thanks for taking the time to write a response.
I totally understand the concept of rules and the way they are processed. What i am having problems understanding is this:
When i turn the blanket ban on, sometimes it will work (IE i when i hit post here sometimes it will say "There is a blanket ban in place and this website is not a whitelisted website"). Then whenever i click on Google Mail (Which is what our company uses for its email client) it de-activates the blanket ban.
Andy
Logged
Pages:
[
1
]
« previous
next »
Jump to:
Please select a destination:
-----------------------------
Announcements
-----------------------------
=> Project News
=> Latest News and Updates
-----------------------------
Support
-----------------------------
=> General Support
=> Installation Support
=> EFW SMTP, HTTP, SIP, FTP Proxy Support
=> VPN Support
=> Hardware Support
-----------------------------
Development
-----------------------------
=> EFW Wishlist
=> Contribute Your Customisations & Modifications
Page created in 0.094 seconds with 18 queries.
Powered by SMF 1.1 RC2
|
SMF © 2001-2005, Lewis Media
Design by
7dana.com