Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    URL filtering on a schedule basis for specific subnets

    Scheduled Pinned Locked Moved General pfSense Questions
    4 Posts 2 Posters 913 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A Offline
      azkerm
      last edited by

      Hi All,

      I'm quiet confused as to how am I suppose to achieve this. What I would like to do is that block specific access such torrent, facebook… etc on a schedule basis only to a given subnet. This is where exactly I'm lost

      E.G.: I need to block facebook for users who're in 10.1.1.2 - 10.1.1.254/24 subnet only within official hours. But the rest who're in other subnet should be able to access it (10.1.2.1 - 10.1.2.254/24).

      Can anyone please advise me on this. and how to achieve this??

      1 Reply Last reply Reply Quote 0
      • stephenw10S Offline
        stephenw10 Netgate Administrator
        last edited by

        Are these subnets connected via different interfaces? Just apply the rules to the appropriate interface.

        Steve

        1 Reply Last reply Reply Quote 0
        • A Offline
          azkerm
          last edited by

          @stephenw10:

          Are these subnets connected via different interfaces? Just apply the rules to the appropriate interface.

          Steve

          No I do not have separate interfaces. Its just WAN & a LAN interface.. and IP's are issued by windows DHCP (which is only 10.1.10.1 - 10.1.10.254). Rest subnets are manually assigned since we use the subnet as /16

          1 Reply Last reply Reply Quote 0
          • stephenw10S Offline
            stephenw10 Netgate Administrator
            last edited by

            Well you can still do it with different firewall rules, just set the required IP range as the source address. Of course there will nothing to stop users in the blocked group giving themselves a static IP in the unblocked group to get around that.

            Steve

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.