How to filter like "facebook" this word in pfsense??

kouevenwang · Jan 28, 2010, 7:21 PM

hi, i am a pfsense new, how can i filter the "facebook" this word ? in which package?? thanks

Supermule · Jan 28, 2010, 7:46 PM

No can do. Pfsense does not have L7 filtering in the release versions….

kouevenwang · Jan 28, 2010, 7:59 PM

can i block the facebook domain ?? or block facebook the ip address??

AhnHEL · Jan 28, 2010, 10:33 PM

If you're comfortable using OpenDNS servers for DNS then you can setup an account with them to block out Social Networking sites but this will block more than Facebook, it will block out MySpace amongst others.

mhab12 · Jan 29, 2010, 12:03 AM

You can put facebook.com in the Squid blacklist via the GUI…the IP(s) would probably work there too.

Oroboros · Jan 29, 2010, 9:33 PM

I've had a customer ask about blocking both myspace and facebook and am in a position where I could probably do it with snort (at least non-https traffic) or squid. We had a long conversation about it and left it open for now. People will tend to look for ways around forbidden things, and that creates its own set of security challenges. The end users may resort to proxy sites that aren't safe and in the end, that could create even bigger threats to network security.

The right answer is adequate supervision and/or hiring only mature employees capable of self-restraint.

kouevenwang · Jan 29, 2010, 10:38 PM

Thanks your suggestion…......thanks again

jigpe · Jan 31, 2010, 12:46 AM

@mhab12

They can access facebook if they use HTTPS.. Blocking facebook is useless if you have 443 opened. You cannot remove 443 too because people need to access gmail and other email that uses 443.