Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Block Facebook videos

    Scheduled Pinned Locked Moved pfBlockerNG
    4 Posts 4 Posters 549 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      ammar177
      last edited by

      Hi there, Hope you are all fine and doing good, I want help regarding blocking Facebook videos using pfblockerNG. I want to allow users to access Facebook, but block the video streaming on Facebook. Is there any way to do it using pfblockerNG. I would really appreciate if someone helps.

      NollipfSenseN M 2 Replies Last reply Reply Quote 0
      • NollipfSenseN
        NollipfSense @ammar177
        last edited by

        @ammar177 said in Block Facebook videos:

        I want to allow users to access Facebook, but block the video streaming on Facebook

        Unless you know for sure the subdomain Facebook uses for video, it won't happen...in fact, I almost certain its an app within their TLD.

        pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
        pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

        1 Reply Last reply Reply Quote 0
        • M
          michmoor LAYER 8 Rebel Alliance @ammar177
          last edited by michmoor

          @ammar177 pfSense doesn't have the ability to block on an app bases using L7 app.id.
          If this is a home lab there is no way.
          If this is a professional setting you should look at endpoint software solutions that are better able to handle this.

          edit: pfSense pfblocker is a sledgehammer to a nail. Blocking ASNs will work. Either put those clients on a different VLAN where you can apply that firewall deny OR using pfblocker create an ASN alias where you could block those devices on a per IP bases based on your firewall rules. There isnt an elegant way of solving your issue.

          Firewall: NetGate,Palo Alto-VM,Juniper SRX
          Routing: Juniper, Arista, Cisco
          Switching: Juniper, Arista, Cisco
          Wireless: Unifi, Aruba IAP
          JNCIP,CCNP Enterprise

          1 Reply Last reply Reply Quote 0
          • JonathanLeeJ
            JonathanLee
            last edited by

            I was also looking for a solution to this. Looking for a way to block just tictok videos, but keep Facebook running again it's all under Facebook's domain so you can't have one without the other. Alot of tedious fine tuning and I am sure you could find away with certificates installed but devices that are running splice or transparent would not see the specifics.

            Make sure to upvote

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.