On 20/3/14 7:22 pm, A Mohan Rao wrote:
Also i struggling to block https social networking sites like facebook etc from last 1to 1.5 years. I used for block that domain through DNS FORWARDER. But when user use open dns its working pls any idea its very helpful for me.
You might find it easier to block OpenDNS than blocking the site itself. If you were to add a LAN rule that blocks traffic on destination port 53 to anything apart from the pfSense interface IP, you'll probably be able to block most external DNS services. That won't, of course, prevent users from tunnelling their traffic through VPN services and the like.
Though as I said in my earlier email, I'm not sure I understand why you want to block things so forcefully. User education (e.g. explaining to colleagues why it's inappropriate to access Facebook during work hours) nearly always works better than technical blocks.
Kind regards, Chris -- This email is made from 100% recycled electrons _______________________________________________ List mailing list [email protected] https://lists.pfsense.org/mailman/listinfo/list
