Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    PfSense bind package

    pfSense Packages
    2
    5
    1096
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      catey03 last edited by

      Hi pfSense users,

      I have installed bind package for pfSense  and correctly block sites like youtube.com. The question is, Is there a way to allow specific IP's to access youtube in bind?  Thanks

      1 Reply Last reply Reply Quote 0
      • M
        muswellhillbilly last edited by

        Bind provides internet name services, which is not the best way of going about blocking specific sites for certain hosts. Unless you want to use a proxy (Squid) then the best way to do this would be to remove the dummy entry for YouTube in Bind and simply add the URL as an alias in your firewall rules and block it for specific hosts. If you go this route you'll have to assign static addresses to your internal client machines - otherwise the rule will fail when the IP address for each internal host is re-assigned.

        1 Reply Last reply Reply Quote 0
        • C
          catey03 last edited by

          Hi muswellhillbilly,

          I also tried blocking youtube by adding an alias and added a rules but it doesn't work..If I block youtube through rules some sites associated with it like gmail or google drive will also get block…Also, each machines is configured with static IP address..I can block youtube through DNS forwarders but I have to allow specific users to access..Any ideas how to make this happen?

          1 Reply Last reply Reply Quote 0
          • M
            muswellhillbilly last edited by

            Your DNS forwarder is acting on behalf of the whole of your network, so unless you want to split your networks and run different DNS servers on each network then I'd consider an alternative. As I mentioned before, if you can't use firewall rules to specify who has and doesn't have YouTube access then the only other solution is a proxy server, such as Squid.

            There may well be links in Google/Gmail which point to YouTube, but the worst that should happen there is that you get broken links. I can view my own Gmail account without any trouble if I block YouTube. Whether you block YouTube via DNS, a proxy or through firewall rules the effect is the same on any other sites which might link through to it.

            1 Reply Last reply Reply Quote 0
            • C
              catey03 last edited by

              I have squid too but it can not block youtube https…Not sure why..Any other solution how to block YT per user?

              1 Reply Last reply Reply Quote 0
              • First post
                Last post