Social networks blocking
-
Hello. I looked through many sites and realized that pfsense does not know how to block social networks via https as a transparent proxy.
Opaque (it is not an option to climb into the users' browser and register a proxy).
I even created patterns, nothing helps.
Tell me about the latest versions, maybe they have a tool for blocking social networks? -
@ginoduqo said in Social networks blocking:
I even created patterns,
All what you can actually 'see' is the IP being used by the client's device. It should be known as an IP used by a social media.
So, you should have a list with these IP's - or use their AS. Check what pfBlockerNg-devel can do for you.Pattern matching TLS traffic is like comparing all waves in all oceans with an image : mission impossible.
Proxying or 'rooting' the user's device is the only way.Btw : this is not some pfSense limitations.
Governments have a hard time tracing these these connections also. If they can't ..... -
You could block Facebook using pfBlicker-NG by creating an alias using the ASN for Facebook.
YMMV with other Social networks.
Or maybe Snort with the openappid-social_networking.rules enabled.
-
This post is deleted!