Jump to content



Photo

Block or allow certain sites debian


  • Please log in to reply
10 replies to this topic

#1 Original Poster

Original Poster

    C++ n00b

  • Tech Issues Solved: 1
  • Joined: 15-July 08
  • Location: my room
  • OS: windows 7, backtrack 5, OSx 10.6

Posted 04 June 2014 - 10:04

hello,

 

I am using my debian pc as router and i want to block connections from places...a white list would be beneifcial for my purposes

 

 

I want to block websites as well as APIs on websites making calls to external sites like twitter/facebook.... I want to make sure these connections are not even called to boost speed (I am on a very VERY VERY limited connection speed) i am using a cache server which works great but im trying to shave off a few more seconds...

 

so i wont to cut out things that dont cache such as API requests and adverts etc any ideas will be welcome




#2 68k

68k

    Neowinian Senior

  • Tech Issues Solved: 3
  • Joined: 20-January 10
  • Location: Australia

Posted 04 June 2014 - 10:21

I could be wrong about this, but I presume you'd need to edit the hosts file on your Debian machine. Here's a guide: https://www.weg.ucar...tfile-unix.html



#3 OP Original Poster

Original Poster

    C++ n00b

  • Tech Issues Solved: 1
  • Joined: 15-July 08
  • Location: my room
  • OS: windows 7, backtrack 5, OSx 10.6

Posted 04 June 2014 - 11:20

I could be wrong about this, but I presume you'd need to edit the hosts file on your Debian machine. Here's a guide: https://www.weg.ucar...tfile-unix.html

I will look into this,

 

I know there is a function in my proxy to sort out the websites... but I cannot seem to get it working...i am using squid



#4 Torolol

Torolol

  • Joined: 24-November 12

Posted 04 June 2014 - 11:24

using proxy you could (black-/white-)list specific urls but that only works on http,

whlle on https your choice would be limited to either block it entirely or allow it all, ie only works at domain level for https connections.



#5 Shaun N.

Shaun N.

    Perfidious

  • Tech Issues Solved: 1
  • Joined: 09-November 04
  • Location: Northants, England
  • OS: Work: Windows 8/Ubuntu Home: Hackintosh

Posted 04 June 2014 - 11:24

I also use squid proxy, it's very effective along side Dansguardian



#6 OP Original Poster

Original Poster

    C++ n00b

  • Tech Issues Solved: 1
  • Joined: 15-July 08
  • Location: my room
  • OS: windows 7, backtrack 5, OSx 10.6

Posted 04 June 2014 - 11:38

I also use squid proxy, it's very effective along side Dansguardian

got any tips on setting up the whitelist? I cant seem to get it working

 

this is what I am inputting

 

acl whitelist dstdomain .example.com .google.com .bing.com
http_access allow whitelist

 

do I have to http_access deny all ? and allow 192.168.2.0/24 ? I dont know with this proxy :(



#7 Shaun N.

Shaun N.

    Perfidious

  • Tech Issues Solved: 1
  • Joined: 09-November 04
  • Location: Northants, England
  • OS: Work: Windows 8/Ubuntu Home: Hackintosh

Posted 04 June 2014 - 13:25

got any tips on setting up the whitelist? I cant seem to get it working

 

this is what I am inputting

 

acl whitelist dstdomain .example.com .google.com .bing.com
http_access allow whitelist

 

do I have to http_access deny all ? and allow 192.168.2.0/24 ? I dont know with this proxy :(

 

For Squid or Dansguardian?



#8 Shaun N.

Shaun N.

    Perfidious

  • Tech Issues Solved: 1
  • Joined: 09-November 04
  • Location: Northants, England
  • OS: Work: Windows 8/Ubuntu Home: Hackintosh

Posted 04 June 2014 - 13:28

For Squid or Dansguardian?

 

For Squid it would be something like this

 

acl localnet srv 192.168.1.0/25
http_access allow all whitelist
http_access deny all
http_port 8080

 

and set up your whitelist with sites or *.gov type sites

 

You can take a look here for some examples

 

http://www.webdnstoo...proxy-whitelist



#9 Shaun N.

Shaun N.

    Perfidious

  • Tech Issues Solved: 1
  • Joined: 09-November 04
  • Location: Northants, England
  • OS: Work: Windows 8/Ubuntu Home: Hackintosh

Posted 05 June 2014 - 09:04

How did you get on with this?



#10 OP Original Poster

Original Poster

    C++ n00b

  • Tech Issues Solved: 1
  • Joined: 15-July 08
  • Location: my room
  • OS: windows 7, backtrack 5, OSx 10.6

Posted 05 June 2014 - 10:36

How did you get on with this?

hello, I got it working in the end, it was all about placment (cheated a lil and used webmin)

 

but now I have two problems to overcome... 1 is to use squid to block multimedia (which it seems to be refusing to do) and another is allow https traffic as well as http through the proxy so I can stop the streaming.... im stuck on this one



#11 OP Original Poster

Original Poster

    C++ n00b

  • Tech Issues Solved: 1
  • Joined: 15-July 08
  • Location: my room
  • OS: windows 7, backtrack 5, OSx 10.6

Posted 05 June 2014 - 10:45

hello, I got it working in the end, it was all about placment (cheated a lil and used webmin)

 

but now I have two problems to overcome... 1 is to use squid to block multimedia (which it seems to be refusing to do) and another is allow https traffic as well as http through the proxy so I can stop the streaming.... im stuck on this one

the 443 traffic is mainly issues with the Iptables  right now i believe...