next »

[jigpe]

Hi pFSerians! Good afternoon!

How-to block facebook in 4 ways:

1st: Get the CIDR of facebook using the domain_whois_tool
                - OR use my Aliases CIDR http://imageshack.us/f/193/cidr.png


2nd: Create Aliases, put all CIDR of facebook (i named it fbips as description) and create ports 80/4443 (i named it fbports as description)

3rd:  Create a firewall rule in LAN > Action is Reject > TCP as proto > DESTINATION is my fbips - PORT is my fbports..

4th : Install SQUID and block facebook.com there.

I hope im posting it in a right folder discussion..

Hope it help all pFSerians!

Thanks to codemarauder for the additional CIDR More beers later man

jigp

[jigpe]

Of course you can add some exemption to certain ips.

Do this: Proto:TCP > Source: Lan IP > Destination: fbips > Port: fbports

jigp

[Nachtfalke]

If you are blocking all IPs by firewall rules why do you use squid in addition ?

[jigpe]

If you have no squid you cant block facebook.com. Ive tried it. Unless there's another way around? But all work for me here.

[jigpe]

If you have no squid you cant block facebook.com. Ive tried it. Unless there's another way around? But all work for me here.
In my case, i have exemptions so i really need squid.

[syedadi]

Hi pFSerians! Good afternoon!

How-to block facebook in 4 ways:

1st: Get the CIDR of facebook using the domain_whois_tool
                - OR use my Aliases CIDR http://imageshack.us/f/193/cidr.png


2nd: Create Aliases, put all CIDR of facebook (i named it fbips as description) and create ports 80/4443 (i named it fbports as description)

3rd:  Create a firewall rule in LAN > Action is Reject > TCP as proto > DESTINATION is my fbips - PORT is my fbports..

4th : Install SQUID and block facebook.com there.

I hope im posting it in a right folder discussion..

Hope it help all pFSerians!

Thanks to codemarauder for the additional CIDR More beers later man

jigp

Can you give me the link for the CIDR info?

[Metu69salemi]

Hi pFSerians! Good afternoon!

How-to block facebook in 4 ways:

1st: Get the CIDR of facebook using the domain_whois_tool
                - OR use my Aliases CIDR http://imageshack.us/f/193/cidr.png


2nd: Create Aliases, put all CIDR of facebook (i named it fbips as description) and create ports 80/4443 (i named it fbports as description)

3rd:  Create a firewall rule in LAN > Action is Reject > TCP as proto > DESTINATION is my fbips - PORT is my fbports..

4th : Install SQUID and block facebook.com there.

I hope im posting it in a right folder discussion..

Hope it help all pFSerians!

Thanks to codemarauder for the additional CIDR More beers later man

jigp

Can you give me the link for the CIDR info?

First post image?!?

[jigpe]

Sure. http://imageshack.us/f/193/cidr.png

[tommyboy180]

That's a lot of steps. Just install ipblocklist and use a custom list or http://list.iblocklist.com/?list=ecqbsykllnadihkdirsh&fileformat=p2p&archiveformat=gz

[johnnybe]

That's a lot of steps. Just install ipblocklist and use a custom list or http://list.iblocklist.com/?list=ecqbsykllnadihkdirsh&fileformat=p2p&archiveformat=gz

Thanks!

[jigpe]

@tommyboy180

Thanks! But in my case i have some exemptions. All users are blocked from accessing fb except me. So im creating a rule to allow it to my IP. And if someone would like to access fb, i will just create a rule to allow the user's IP.

jigp

[pcboarders]

2nd: Create Aliases, put all CIDR of facebook (i named it fbips as description) and create ports 80/4443 (i named it fbports as description)

if you do this and have a webserver are you going to prevent it to access the net?
is the port 80 / 443 instead of 80 / 4443
want to try this and see if it interferes


 

[jigpe]

@pcboarders
I have no concern with webserver so i didn't bother to try this.
I just want to block facebook and give exemptions to those who want to access facebook,

jigp

[paoloromano]

Masters,

What if you have multiwan and failover, will it conflict with squid?
I would like to block also other sites and facebook but might encounter unwanted conflict with my multiwan and failover.
advise please, thanks!

[jigpe]

Same rule in MultiWan. Use the firewall rule and select the WAN or whichever is your WAN1 and WAN2.