|
Title: Frustrating black list problem Post by: amac on Thursday 29 September 2011, 08:14:03 am Hi All
Im having some problems using the web interface to blacklist all internet domains. I have ** in blacklist. It will occassionly work (just when i registered for this site, it worked and blocked access, but then i reloaded the page and it was fine). I have also tried having some explicitly listed sites in there which work fine for me. (ie if i put facebook.com in it will block that) It is the first policy in the access policy tab, and the second filter in the content filter behind only the default filter. Any help to get this working correctly would be appreciated.. im running vesion 2.4.1 Andy Title: Re: Frustrating black list problem Post by: mrkroket on Friday 30 September 2011, 03:13:01 am No, to create a deny all internet domains rule, you don't need to specify any domain, just create a rule like that:
Source: ANY Dest: ANY Access: DENY ACCESS That rule blocks all. Rules are checked in order, the first to meet the conditions is used. So your deny all must be the last one. About blocking sites. Remember that on HTTP proxy you must put a leading dot on domains. You must use .facebook.com , and not facebook.com Rules to allow facebook to 192.168.0.10, allow ALL to Wifi users except facebook, and deny everything else: Rule 1: Source: 192.168.0.10 Dest: .facebook.com Access: ALLOW Rule 2: Source: BLUE Dest: .facebook.com Access: DENY Rule 3: Source: BLUE Dest: ANY Access: ALLOW Rule 4: Source: ANY Dest: ANY Access: DENY ACCESS I think you get the idea. Rule order is important, changing the order on rules 2 and 3 makes the BLUE facebook rule useless (as the order rules fires before, and allow the user to reach facebook). Title: Re: Frustrating black list problem Post by: amac on Friday 30 September 2011, 03:17:05 am Sorry i should have mentioned that i need the PC to be able to access certain internet sites. But only those two sites.
Title: Re: Frustrating black list problem Post by: mrkroket on Saturday 01 October 2011, 12:20:56 am Whatever, I wrote an example to show you how rules work.
It's up to you to create the rules the way you need. Title: Re: Frustrating black list problem Post by: amac on Saturday 01 October 2011, 01:52:06 am Hi.
Thanks for taking the time to write a response. I totally understand the concept of rules and the way they are processed. What i am having problems understanding is this: When i turn the blanket ban on, sometimes it will work (IE i when i hit post here sometimes it will say "There is a blanket ban in place and this website is not a whitelisted website"). Then whenever i click on Google Mail (Which is what our company uses for its email client) it de-activates the blanket ban. Andy |