I.S.C. William wrote: >the main reason is I need to block Google's domains, such as >YouTube, and Google Drive, as these have the same IP with different >types of subdomain. > >I can not do by proxy as this does not handle https ports, therefore >you have to be by shorewall.
You could try doing it in DNS. Run your own DNS server, and <by whatever means> block it from returning an address for the sites you want to block. You'll need to block access to any other DNS so people can't just use an outside server. Some firewalls also have an option to intercept DNS traffic passing through, and run all queries past a block list provided by a vendor or 3rd party. Usually this is to restrict access to inappropriate content (eg in schools), but I'd expect there to be an option to manually add entries. -- Simon Hobson Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed author Gladys Hobson. Novels - poetry - short stories - ideal as Christmas stocking fillers. Some available as e-books. ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
