Block all except Spotify



  • I currently have a FW rule that blocks web surfing (ports 80 and 443) for my kids devices at bedtime. My younger son likes to listen to music on Spotify and this rule will not allow Spotify to load. Can someone tell me how I would set up the firewall to allow access to Spotify, but deny all others?

    Thanks,
    Andy



  • Add a rule before the block rule that allows traffic from his IP address to all of the addresses used by Spotify.



  • Thanks KOM,

    I read in the forums something about using the ASN instead of IP addresses, Could I use this instead? If so, would you mind explaining how to do this? Sorry for the questions, I am not a FW expert.

    Thanks again,
    Andy



  • I'm not aware of that.  I would use the ASN to get a list of IP addresses and then stuff them into a text file on the pfSense box, and then use that file as an URL table alias.



  • @KOM:

    I'm not aware of that.  I would use the ASN to get a list of IP addresses and then stuff them into a text file on the pfSense box, and then use that file as an URL table alias.

    OK thanks. I will give that a try.

    Andy


  • Moderator

    pfBlockerNG has the ability to collect ASNs.



  • @KOM

    Thanks KOM. I was able to manually create a list of IPs using Hurricane Electrics site and put the text file into an Apache server I have running on my LAN. I then configured a URL table and pointed it to the file. Everything seem to work now. Thanks again for your patients and help!

    @BBcan177:

    pfBlockerNG has the ability to collect ASNs.

    Thanks BBCAN. As I will be using more of these ASNs, can you tell me more about how to do this?

    Thanks,
    Andy



  • Thanks again for your patients and help!

    The doctor is in!  ;D

    pfBlockerNG has the ability to collect ASNs.

    Thanks for the tip.  I wasn't aware of that.