How to allow Internet only for one Device and allow only one website for all the others ?

Mago

@stephenw10 Good morning thank you for replyng, im tryng to do it but i dont understand is it is possible, the domain name is the FQDN of a Lambda function, and it change the pubblic IP sometime, the IP its not static.. how i can set an alias for this domain name?

Gertjan

By using the Firewall => Aliases => URLs - add an URL like

where "some-domaine-for-me.tld" is your domain.

What is a "Lambda function" ?

edit

With Diagnostics > Tables you can check your alias and see that it will get resolved (regularly, every 5 minutes or so) so your alias will always point to the right IP.

Mago

@Gertjan
I dont understand the meaning of alias couse if i put some Url like google.com or some random url it give me this error= A valid URL must be provided. Could not fetch usable data from 'google.it'.

Gertjan

@Mago said in How to allow Internet only for one Device and allow only one website for all the others ?:

google.com

Wrong example.

Google, Facebook, twitter, cnn, and other huge companies are special.
Google by itself has thousands of different IP's - because they have that many servers. Probably more.

The fact is : still these days, people don't know that, and use "youtube.com" as an alias to try to block it. And discover that it won't work.
Every time you try to resolve google.com another answer can be possible.

The auto-resolve utility that runs in the backgroud to resolve the FQDN's in the Aliases isn't designed neither capable of handling these kind of URL's. You'll be needing pfBlockNG-devel if you want to (try to) block URLs like these.

An alias for you own domain name will work fine.

Mago

@Gertjan
The domain that i want to put in the alias is a lambda link lambda is a service provided by AWS cloud, itis an endpoint like https://somevarcharblablabla.amazonaws.com
anyway if i put another domain tha i have inside my network her it give me the same error..
"A valid URL must be provided. Could not fetch usable data from https://somedomain.com
i dont understand

the thing that i want to do its to allow only one specific website for de hosts connected to the lan network
i dont want to block the website but i want to allow only that.

Gertjan

@Mago said in How to allow Internet only for one Device and allow only one website for all the others ?:

https://somedomain.com

is not a FQDN.

A FQDN is something like somevarcharblablabla.amazonaws.com - when resolved, it should return an IPv4 and/or IPv6.
The https:// part is what browser use so the know that port "443" is implied, and that gets back is some 'web server answer.

Mago

@Gertjan
i tryed to put only somevarcharblablabla.amazonaws.com
but i get always the same error = Could not fetch the URL "somevarcharblablabla.amazonaws.com

anyway if i ping somevarcharblablabla.amazonaws.com

it reply me whit an ip address

stephenw10

We will probably need a screenshot of exactly how you are adding that alias. It should work with a real FQDN.

That has to resolve to only one IP though (it can change longer term) to be useful. If it can resolve to numerous IPs you will need some other way to filter that traffic such as by DNS.

Steve

stephenw10

Ah, the alias type should not be URL, that is for retrieving a list of IPs. The alias type should be hosts.

Steve

Gertjan

You're right.

Test :

which is correct.