1
16.7 Legacy Series / Allow Facebook and Youtube from 14.00 to 16.00 hours daily, block all other time
« on: August 22, 2016, 01:25:21 pm »
Hello
I wanted to allow all users to access facebook and youtube between 14.00 hrs to 16.00 hrs daily, but all other times to be blocked.
I have set firewall rules to block , its working.
To pass both sites, the following steps are made:
1) Defined schedule FreeHours_14_16_PM on all dates for 14.00 to 16.00 hrs.
2) Defined an alias - SocialSitesRestricted and added hosts www.youtube.com , www.facebook.com
3) Created a firewall rule
Action - Pass , Interface - LAN , TCP/IP version - IPV4 , Protocol - TCP/UDP , Source - LAN Net
Destination - SocialSitesRestricted , Destination Port Range - Any - Any , Category - social_networks
Schedule - FreeHours_14_16_PM, gateway - default
I also have firewall rule for " Block HTTP bypass ", "Block HTTPS bypass " , "Default allow LAN to any rule" (IPV4) , Default allow LAN IPv6 to any rule , "NAT redirect traffic to proxy " (IPV4 and IPV6)
Unfortunately, opnsense blocks facebook and youtube between 14-16 hrs. I am on a test server. I also get https certificate error for facebook, though I have other https sites working correctly.
Please request your help...
Valsaraj
I wanted to allow all users to access facebook and youtube between 14.00 hrs to 16.00 hrs daily, but all other times to be blocked.
I have set firewall rules to block , its working.
To pass both sites, the following steps are made:
1) Defined schedule FreeHours_14_16_PM on all dates for 14.00 to 16.00 hrs.
2) Defined an alias - SocialSitesRestricted and added hosts www.youtube.com , www.facebook.com
3) Created a firewall rule
Action - Pass , Interface - LAN , TCP/IP version - IPV4 , Protocol - TCP/UDP , Source - LAN Net
Destination - SocialSitesRestricted , Destination Port Range - Any - Any , Category - social_networks
Schedule - FreeHours_14_16_PM, gateway - default
I also have firewall rule for " Block HTTP bypass ", "Block HTTPS bypass " , "Default allow LAN to any rule" (IPV4) , Default allow LAN IPv6 to any rule , "NAT redirect traffic to proxy " (IPV4 and IPV6)
Unfortunately, opnsense blocks facebook and youtube between 14-16 hrs. I am on a test server. I also get https certificate error for facebook, though I have other https sites working correctly.
Please request your help...
Valsaraj