Custom block list for specific subnet ?
-
Hello everyone,
So in case of school where all devices have the default block lists to block porn and ads, but in the computer lab we need to block games websites like poki.com and such
So i think this breaks down to three points:
- block list of gaming websites
- pfblockerng block different lists for specific subnet
- bypassing one of the IP addresses. This is the teacher's computer, not bypass them to gaming websites but in case I add other block lists to the students but still allow the teacher.
For the first one I'm still looking for lists, if anybody does know such a list please mention it
For the 2nd and 3rd I really need help, any help is appreciated.
Thanks in advance
-
@mzeid said in Custom block list for specific subnet ?:
pfblockerng block different lists for specific subnet
While adding a new DNSBL feed here Firewal > lpfBlockerNG > DNSBL > DNSBL you can not select "use feeds only on interface LAN & LAN2" or "use feed only on interface LAN2 only", DNSBL feeds (filtering) apply to all interfaces.
That is, this is valid when the "Python mode" is used.
A feature request ?Btw : the above is 'very AFAIK, of course.
For a school I would probably consider using a Pi-hole alsoAs the DNSB Python filtering script is (I guess) aware of the requester IP, thus the network, thus the interface, it could be capable of 'per interface' filtering.
In the past, before we were using pfBlockerng, and used handcrafted 'unbound' config rules, here :
we were able to set up DNSBL files 'per interface' (per network).
This meant that this one was our guide line.@mzeid said in Custom block list for specific subnet ?:
bypassing one of the IP addresses
That's the policy group setting :
and from now on, this devices will bypass DNSBL filtering
Btw :
@mzeid said in Custom block list for specific subnet ?:
teacher's computer
I'm pretty sure the teacher doesn't mind he can't visit these sites neither ^^
