Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Block the Proxy sites

    Scheduled Pinned Locked Moved General pfSense Questions
    4 Posts 4 Posters 2.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      nagamani
      last edited by

      Dear Team,

      I want to block the Proxy sites in our firewall.

      Kindly send the procedure for blocking the proxy sites.

      1 Reply Last reply Reply Quote 0
      • KOMK
        KOM
        last edited by

        Kindly send the procedure for blocking the proxy sites.

        1.  Figure out all of the IP addresses for every proxy in the entire world that you want to block
        2.  Create an alias to hold all of those IP addresses
        2.  Add firewall rule on LAN to block access to that alias you created in #2

        That's it.  We can help you with steps 2 & 3.  Step 1 – you're on your own.  Try using Google to look for public web proxy servers.

        1 Reply Last reply Reply Quote 0
        • F
          firewalluser
          last edited by

          Add the domain name to aliases, eg
          www.myfreeproxy.com
          rt1.myfreeproxy.com
          rt2.myfreeproxy.com
          vpn1.myfreeproxy.com
          vpn2.myfreeproxy.com
          etc etc and then put them on a block rule in the fw rules.

          The hard work is establishing the subdomains and domains not associated with the example www.myfreeproxy.com as they might have a few other domains they use for the actual routing of proxy server traffic.

          http://www.publicproxyservers.com/proxy/list1.html

          At the very least establishing and blocking the entrance point and/or ports will be a nuisance but as the Alias function in pfsense doesnt translate down to subdomains, you will need to specify all permutations yourself.

          Capitalism, currently The World's best Entertainment Control System and YOU cant buy it! But you can buy this, or some of this or some of these

          Asch Conformity, mainly the blind leading the blind.

          1 Reply Last reply Reply Quote 0
          • D
            doktornotor Banned
            last edited by

            pfBlockerNG has a proxy blocklist (based on MaxMind data).

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.