2 Jul 2010 14:03
Re: blocking https:facebook.com via squidguard & pfsense gui
I can't block tcp 443 on a wholesale basis; we need it for lots of stuff. If I can do it for a single domain, I'm there. Luke Jaeger | Technology Coordinator Pioneer Valley Performing Arts Charter Public School www.pvpa.org On Jul 1, 2010, at 5:50 PM, Jim Pingle wrote: > On 6/30/2010 4:29 PM, Luke Jaeger wrote: >> thanks Jim - >> >> I got the impression from reading the pfsense forum that there is a >> way >> to block https for specific domains by denying the connect method - >> am I >> understanding this wrong? > > That would still require they be routed through squid. Denying a > connect > method is a function of squid, not of the firewall. (Though by > blocking > port tcp/443 you can effectively deny that, unless it's running on an > alternate port...) > >> Otherwise I might give WPAD a try. > > There's a doc in the wiki which goes over how to configure it on > pfSense. It's not too hard, assuming the browsers are set for > auto-configure. > > Jim > > --------------------------------------------------------------------- > To unsubscribe, e-mail: support-unsubscribe@... > For additional commands, e-mail: support-help@... > > Commercial support available - https://portal.pfsense.org > --------------------------------------------------------------------- To unsubscribe, e-mail: support-unsubscribe@... For additional commands, e-mail: support-help@... Commercial support available - https://portal.pfsense.org
RSS Feed