Blocking an Entire Domain


(Andrew) #1

NethServer Version: NethServer release 7.5.1804 (final)

Hi All,

Can anybody give me some guidance on how to block an entire domain in Neth Server?

I have tried using the Proxy (I would need to list each sub domain to get this to work)
I tried a DNS redirect to another IP, but it seems the Service Providers DNS over rides this/
And I have tried to make a rule in the firewall and reject the traffic, this also seems to fail unless I list all the sub domains.

Any suggestions?

Thanks
Andrew


(Markus Neuberger) #2

Hi Andrew,

welcome to Nethserver Community.

You may use the web content filter for that, there you have the possibility to block URLs or entire domains:

http://docs.nethserver.org/en/v7/content_filter.html

grafik


(Andrew) #3

Hi Markus,

Thanks for your reply. I have already tried that. This works if I want to block webpage.com. But if I want to block the sub domain of aaa, bbb and ccc, I have to enter all three addresses in the blacklist section.

In some cases there are 50 sub domains and thus difficult to block all variations.

Is there a way to use a wildcard?

I noticed in the image you have expression matching URL unticked. Could this be the reason the entire domain is not blocked?

Thanks
Andrew


(Markus Neuberger) #4

Do you use auth, manual or transparent proxy? Do your clients use Nethserver as DNS, proxy and gateway?

Usually if you enter blocked domain “microsoft.com” then all subdomains like “subdomain.microsoft.com” are blocked too.

Did you enable the blacklist in the filter settings?

grafik

Did you set a proxy bypass? If yes please remove it.

http://docs.nethserver.org/en/v7/web_proxy.html#bypass

No, it shouldn’t affect black/whitelisting.