Blocking https sites.
by chomwitt from LinuxQuestions.org on (#5C5BK)
Trying to block https sites like some famous video sharing site i found that one option is webservices that after setting their DNS's ips in my router do the job.
That dns option has the drawback that services offering safelinks to youtube wont work. When i emailed one of them he send me dozen of ip's and domains that should be whitelisted in order to keep youtube blocked but safelink sites operational.
(dnsblocking sites dont accept ip or domains with * ,as the also emailed me).
Also i found out that basic adsl home gateways in the range of 0-100euros can handle only trivial http url blocking.
But after searching in more expensive ones like some models from asus or fritz still they dont mention that they can block https.
So as i get it to have flexibility you must go linux-servers like squid or do some ip filtering on your own.
Also i had another idea. If https uses TLS and a certificate on your computer is needed to represent your 'trust' wouldnt it work if i remove a certificate from sites i dont work ?
That dns option has the drawback that services offering safelinks to youtube wont work. When i emailed one of them he send me dozen of ip's and domains that should be whitelisted in order to keep youtube blocked but safelink sites operational.
(dnsblocking sites dont accept ip or domains with * ,as the also emailed me).
Also i found out that basic adsl home gateways in the range of 0-100euros can handle only trivial http url blocking.
But after searching in more expensive ones like some models from asus or fritz still they dont mention that they can block https.
So as i get it to have flexibility you must go linux-servers like squid or do some ip filtering on your own.
Also i had another idea. If https uses TLS and a certificate on your computer is needed to represent your 'trust' wouldnt it work if i remove a certificate from sites i dont work ?