Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Allow only Gmail.com

    Firewalling
    4
    8
    3470
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      ixee last edited by

      Hi all,
      I need to block all the HTTP/HPPTS websites (except for Gmail.com). What is my configuration ?

      Many thanks!

      1 Reply Last reply Reply Quote 0
      • Cry Havok
        Cry Havok last edited by

        Please search the forum - this has been discussed many times already.

        As a hint, you'll need to block all outbound ports by default (particularly 80 and 443) and use a proxy server.

        1 Reply Last reply Reply Quote 0
        • I
          ixee last edited by

          Any idea without use proxy server and filter ? I used Rules for a block http/https. And Aliases for a accept Gmail. But not worked. Also I need a update from kaspersky.com. Sorry for my bad english.

          1 Reply Last reply Reply Quote 0
          • M
            Metu69salemi last edited by

            Do you have allow rule before deny rule?

            1 Reply Last reply Reply Quote 0
            • I
              ixee last edited by

              Created aliases and rules. See the attachments.




              1 Reply Last reply Reply Quote 0
              • M
                Metu69salemi last edited by

                modify your rule.

                Remove source port definition, that should do it

                1 Reply Last reply Reply Quote 0
                • I
                  ixee last edited by

                  I modified, but also can't go out to my aliases sites.


                  1 Reply Last reply Reply Quote 0
                  • D
                    dhatz last edited by

                    The method I'd use, which is also the one recommended by Google for users of Gmail and GoogleApps, would be to white-list Google's IPv4 blocks (and maintaining those with a script). It is described in a pfsense feature request I filed a year ago: http://redmine.pfsense.org/issues/1901

                    For details you can read Google's "Networking Best Practices for Large Deployments"

                    1 Reply Last reply Reply Quote 0
                    • First post
                      Last post