Happy new year to all.
IS it possible that sites blocked in PFsense will still be accessible, if the apps are already being accessed outside the network, and the device is brought into the environment.
I don’t understand the question.
Sites were blocked in PFsense eg Netflix, but is still accessible on the network through the app on the device, not accessing through the web, which there would be a rule to block url and associate ip addresses.
Since the user would have the app installed on their device they would still be able to access. How would I be able to really lock down the FW for access, regardless in they are using the app or going through the URL.
Find the IP’s the app is reaching out to and block them.
This was what was done today:
- installed packet capture app on my mobile
- ran Netflix app
- Took note of the IPs the app was reaching out to
- created and alias on the firewall, for the student vlan, listed all IPs from the capture
- Applied changes.
When I tested access from my mobile, I was still able to access the service. Is there something i’m missing?
Block these domains:
* netflix.com
* netflix.net
* nflxext.com
* nflximg.net
* nflxso.net
* nflxvideo.netWould those prevent the app from functioning on devices coming into the environment? As that is my aim. Netflix is just one.
Yes this will block Netflix completely.
Thank you.
Have a few more to block as well, namely:
Instagram
Snapchat
Tictok
Whatsapp
Fortnight
Is it a matter of creating an Alias then adding it to the vpn profile.
Is there a site i can go to get the domains as you did for Netflix?
Regards
Thanks.
Will take a look and add to the fw. Hopeful I do it correctly and not have to revisit.
Good Day,
Tried with the netflix domains, but was still able to access the app after they were added to the FW rule from my mobile. Was something done wrong?
No as long as you blocked all of it’s ip address.