Firewall rules
-
Hi ..i am try to implement firewall rules on pfsense... i want to give full access of internet to some users and same time limited access to other users, like only few websites as gamil teams, company's website and some local government websites. I have defined two rules as follows:
1- in this i have added the allowed ip list to access ful internet without restrictions.
2- i have added the websites only which i want other users to use like I mentioned gmail teams etc. i have tried with full domain name and ip addresses both but i am not able to access these site nor anyothers i have added one deny rule in the last for rest of the network.
Some times i am able to access my company's website or local government websites but that loads so slow and on otherside the ip addresses which i allowed from LAN works fine...
I have tried adding DNS allow with DNs port as well but not working ... any idea please ??Btw i am using pfsense 2.5 with hardware of hp proliant Dl 360p xeon processor 16 GB Ram, 128GB ss
Thanks in advance -
@abjan Please take a screenshot of your these three rules and aliases that apply to these three rules.
-
@hieroglyph ! hello sir
the user it_computer_allow in rules has access to all but on other side the rest of the local net i want them to allow only few sites for example i have added 2 websites for now in aliases...
in alias first one is https domain and second is non https ...
non https is loading very slowly but https is not even opening...
Please help ... thank you... -
@abjan You could try to add FQDN and not some IPs...
-
@bob-dig did that but same result :(
-
@abjan Did you noticed that many websites nowadays pull stuff from many subdomains and other domains? You probably have to "whitelist" a lot more then just one domain per website.
Maybe take a look at pfBlockerNG - DNSBL.
-
@bob-dig yeah right now watching some tutorials of pfblockerNG... still long way to learn as I am new in it, anyway thanks for reply appreciated.
-
