Pfsense + Squidguard (how to manually blocked sites)

Discussion in 'PFsense M0n0wall IPcop & others PC based routers' started by Deeza, Feb 16, 2012.


  1. Deeza

    Deeza staff Staff Member




    you can blocked site(s) manually by using Domain list,URLs list, Expressions.
    example: i want to blocked "youtube to mp3" converter

    follow the screenshots
    1.jpg
    next
    2.jpg
    click save
    go to General settings TAB
    click save & apply.

    now lets test if its working :)

    result
    3.png
    :)
     
    x64scorpion, luffy and incubus14 like this.
  2. incubus14

    incubus14 Member




    yun oh! thanks master deeza ;)

    btw sir yung blk_torrent..ano yan sites, extensions or expressions gamit nyo?
     
  3. Deeza

    Deeza staff Staff Member




    mga Top Torrents (demonoid.me) / Torrent Finder etch. blocked ko ang site, kasi ang lakas mag bigay ng torrent file na libre search mo lang.
     
  4. dhapelo_32

    dhapelo_32 Member




    nice :)
     
  5. incubus14

    incubus14 Member




    thanks master!
     



  6. deez, bakit po wala akong makitang img sa screenshot mo dito?
     



  7. mga master tanong ko lang kung pano e block si Hotspot Shield?!? na ba-bypass nya kc si pfsense eh, kaya bypass din si squidguard. TIA!
     
  8. athenaxds

    athenaxds Member




    block mo sya mismo.
     
  9. Deeza

    Deeza staff Staff Member




    updated ba ang browser mo?
     



  10. Sir paano?!?! saan ko babagohin sa pfsense ko?!?!
     



  11. all websites will be accessed just by adding "s" on http even if it's block on the proxy filter, for example "https://www.facebook.com. is there any way to solve this... gratitude.
     



  12. master deeza pa update poh ng pics sa 1st post mo.. hindi poh ma view kahit updated na poh ung browser. akala ko ako lang..
    TIA!
     
  13. Deeza

    Deeza staff Staff Member

  14. Deeza

    Deeza staff Staff Member




    ^updated na po yung image download link sa mediafire
     



  15. maraming salamat master Deeza :)
     
  16. josekym

    josekym Member




    Use interface firewall rules to block HTTPS/SSL traffic.
     
    Deeza likes this.
  17. Deeza

    Deeza staff Staff Member




    @Sonic8 answer to your question.

    how to block https traffic?

    eto example:

    1) go to command prompt type cmd
    2) tye ping facebook.com
    3) kunin mo yung address (e.g. 69.171.242.11)
    4) sa pfsense webgui punta ka sa Firewall:Aliases
    5) make your rule
    *Name: Facebook_Network
    *Values: 69.171.242.0/24
    *Description: Facebook Address
    6) save
    7) go to Firewall:Rules >LAN
    8)make rule na i-block ang HTTPS
    9)your done
    10) click Apply to make changes / Save

    Screenshots

    ss1.png

    ss2.png

    :)
     
  18. josekym

    josekym Member




    ^^In addition, you can use www.nwtools.com to determine the CIDR network blocks of the sites you wish to block. Just get a sample IP as Deeza mentioned above, and then use it to determine the supernet/subnet it belongs to. Combine the firewall rules with time rules and you can successfully control HTTPS access to allow for specific times only (i.e. lunch break).

    Here are the CIDR ranges we use to block FB here:

    69.63.176.0/20
    69.171.224.0/19
    63.135.80.0/20
    66.220.144.0/20
     
  19. Deeza

    Deeza staff Staff Member




    ^^also include this FB address got from
    http://whois.arin.net
    http://domaintoip.com

    74.119.76.0/22
    204.15.20.0/22
    66.220.144.0/20
    173.252.64.0/18

    **update see screenshot
    yung Unfilter para sa mga client workstations na full access (ibig sabihin "pass" ang HTTP/HTTPS) customized.

    ss0.png

    ss1.png

    ss2.png

    ss3.png
     
                                 

Share This Page