Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    1. Home
    2. Tags
    3. redirect
    Log in to post
    • All categories
    • T

      Block redirect
      Firewalling • firewall alias redirect rules • • tbr281

      6
      0
      Votes
      6
      Posts
      262
      Views

      Gertjan

      @tbr281 said in Block redirect:

      Just wish it would redirect it.

      Even "dirty websites" use TLS these days. Easy to recognize, their URL starts with https://

      Without drastic measure on your LAN, that is, all your web visiting devices and pfSense, you can't redirect https://"dirty websites" to https://DuckDuckGo
      Your browser won't allow this.
      The test : is the host name "dirty websites" present in the certificate obtained ? will fail.
      Have a look :

      e2e336b4-a7bf-4b88-ab68-5e617416ed3b-image.png

      That's doesn't look like "dirty websites" : your browser will refuse the connection.

      If it was possible, you would also be able to redirect https://some-bank-acess-you-use to https://some-bank-access-you-use, and because you control some-bank-access-you-use (and your site looks identical to some-bank-acess-you-use), now you get the access credentials.
      And five minutes later you can access https://some-bank-acess-you-use with the credentials you've obtained, and do what you want.
      The thing is, why would you ask if something if possible if you don't want it to be possible ?
      After all, https://"dirty websites", or https://facebook.com or https://some-bank-acess-you-use or https://some-bank-acess-you-use, for your PC, switch, pfsense, upstream routers of your ISP etc, its all the same : a connection to some server over port 443, TCP.

    • I

      Viewing redirected DNS destinations
      Firewalling • dns redirect firewall rules • • ibbetsion

      1
      0
      Votes
      1
      Posts
      154
      Views

      No one has replied

    • D

      Android phones close post-authentication redirect page prematurely/instantly
      Captive Portal • android redirect • • DMartinMCCNO

      1
      0
      Votes
      1
      Posts
      317
      Views

      No one has replied

    • E

      Nginx "404 Not Found" Error after POST action to "$PORTAL_ACTION$"
      Captive Portal • captive portal ngin php redirect • • emad

      2
      0
      Votes
      2
      Posts
      438
      Views

      Gertjan

      Hi,

      @emad said in Nginx "404 Not Found" Error after POST action to "$PORTAL_ACTION%2quot;:

      So, do I miss knowledge with CP behavior or should I modify something?

      You might as well check (== read and understand what happens when and why etc) this file /usr/local/captiveportal/index.php
      It's the file that's get 'executed' when a users is redirected that the portal login interface.
      Read that file carefully - and also check this one : /etc/inc/captiveportal.inc which contains all the functions.

      For instance, you'll find why/where/when a string like $PORTAL_ACTION$ is replaced by the correct URL before getting send to the client.
      Throwing $PORTAL_ACTION$ at the client's web browser who throws it back to the captive portal web server will produce 404 errors.

    • S

      Addding PPA gets routing/redirect error
      General pfSense Questions • routing newbie redirect router • • strongthany

      3
      0
      Votes
      3
      Posts
      177
      Views

      S

      @stephenw10 I just tried it again and it works. Looks like they finally updated their certs. Thanks for the help!

    • H

      Some Cloudflare hosted websites not working and throw: ERR_NAME_NOT_RESOLVED
      Firewalling • dns dns resolver redirect squid squidguard • • h_b

      1
      0
      Votes
      1
      Posts
      165
      Views

      No one has replied

    • E

      Is it possible to intercept cname resolution in DNS resolver.
      DHCP and DNS • dns redirect cname • • ebsense

      2
      0
      Votes
      2
      Posts
      202
      Views

      johnpoz

      If you want

      hostA.domain.tld to return local
      hostB.domain.tld to return public
      hostC.domain.tld to return local

      Then you would have to create host overrides for each specific fqdn that you want to return local.

      Or you can go the other way and do a redirect, and then just create records that point to your public IP for those fqdn.. Depends on how many you have on what side, etc.