Answer the question
In order to leave comments, you need to log in
M
M
meat152016-06-08 10:43:38
meat15, 2016-06-08 10:43:38
What are the ways to block https (youtube, vk) on the local network?
There is a Mikrotik Routerdoard 2011iL router. It is necessary to close access to some employees using the https protocol. Adding ip addresses to the Address Lists helps, but vk.com and youtube.com have too many of them, which is not very rational.
3 answer(s)
@meat15
@DMGarikk
@qweqwa
P
paxlo, 2016-06-08 @meat15
Create regexp with blocked url
/ip firewall layer7-protocol
add name=gvno regexp="^.*(odnoklassniki.ru|odkl.ru|ok.ru|vk.com|vkontakte.ru|vkontakte.com|durov.ru| fb.com|facebook.com).*\$"
Add firewall rule (should be higher than allow rules for forward chain)
/ip firewall filter add action=reject chain=forward layer7-protocol=gvno protocol=tcp reject-with= tcp reset
I
Igor, 2016-06-08 @DMGarikk
It is necessary not to ban by ip address, but by domain name, you also need to preventively write down all anonymizers that you can find in Google
Q
qweqwa, 2016-06-08 @qweqwa
squid transparent https
vk can block the entire data center, not a single IP.
although, in my mind, this is solved by administrative measures, because:
people will still have their personal smartphones, which vk is available via 3G.
You can watch videos not only on Youtube, anti-pirates are fighting video sites and cannot overcome, but do you think you can?
maybe it’s worth the opposite:
leave only what is needed for work? close everything else?
Similar questions
B
R
Randewoo2019-02-06 17:00:06
Is it possible to write a back-end in C# on Linux? Is it worth it?
3Reply
D
L
D
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question