Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Blocking Windows Update using DNS Resolver

    DHCP and DNS
    1
    2
    256
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      LunchBoxSteve last edited by

      I have a lot of PC's on family and friends networks that are behind PFSense firewalls and we wanted the ability to block Windows Updates network wide until we chose to run the updates and came up with this solution of blocking domain names in our PFSense Firewalls using DNS Resolver and then locking down network to only use the Firewall for DNS. It works perfectly and I thought I would share here. I realize it can be done with DNS sink holing as well but not all the Firewalls I have setup have PFBlocker running so I thought it just best to stick with this because it's simple and won't affect various setups.Blocked Microsoft Domains for Windows Update.png

      1 Reply Last reply Reply Quote 0
      • L
        LunchBoxSteve last edited by

        If you want to block Telemetry Data as well here is what you would add... Blocked Microsoft Domains for Windows Update.png

        1 Reply Last reply Reply Quote 0
        • First post
          Last post