1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to block a specific HTTPS site for a specific computer ?

Discussion in 'Tomato Firmware' started by der_Kief, Jun 26, 2011.

  1. der_Kief

    der_Kief Super Moderator Staff Member Member

    Hi @ All,

    how can i block a specific HTTPS site for a specific computer ? Unfortunatly the Access Restrictions can only block HTTP requests. In my case i want to block facebook for a specific computer. But if i put facebook in the access restrictions and assign the specific computer to it facebook is still accessible via https://www.facebook.com
    Does anybody now how i can manage this ?

    I'm using Tomato Firmware RAF1.28.9006 MIPSR1_RAF K26 Std-NOCAT

    der_Kief
     
  2. mpegmaster

    mpegmaster Addicted to LI Member

    der_Kief,

    Could you just modify the computer 'Host' file?

    Reference... http://en.wikipedia.org/wiki/Hosts_(file)

    Example...

    #
    # This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
    #
    # This file contains the mappings of IP addresses to host names. Each
    # entry should be kept on an individual line. The IP address should
    # be placed in the first column followed by the corresponding host name.
    # The IP address and the host name should be separated by at least one
    # space.
    #
    # Additionally, comments (such as these) may be inserted on individual
    # lines or following the machine name denoted by a '#' symbol.
    #
    # For example:
    #
    # 102.54.94.97 rhino.acme.com # source server
    # 38.25.63.10 x.acme.com # x client host

    127.0.0.1 localhost

    CHEERS!!!
     
  3. der_Kief

    der_Kief Super Moderator Staff Member Member

    Hi mpegmaster,

    thanks for your suggestion but for me thats suboptimal because the list of computers should be expandable ! Editing each computers host file is not very productive.
    On the other way i dont know if this works via host file ?
    Is there no way to control this from a central point as the WRT54GL w/ Tomato ?

    der_Kief
     
  4. mpegmaster

    mpegmaster Addicted to LI Member

    HTTPS URLs begin with "https://" and use port 443 by default.

    SO... UDP Port forward that DNS or IP of that computer to port 80... No

    Cheers!
     
  5. der_Kief

    der_Kief Super Moderator Staff Member Member

    This is obvious to me :biggrin:
    Can you explain this a little bit more precise ? (Thats the way you mentioned with the host file?)

    der_Kief
     
  6. mpegmaster

    mpegmaster Addicted to LI Member

    What I meant was to trick the port #443 to another port some where else...

    But I think you need to know the IP of the https of the restricted website... correct?

    I have done this to connect mail servers for appliance's that have restricted port to 25 or 110 to the newest email port schemes.

    Example... GMAIL SMTP was port 25 Now... 587

    https-portfoward.jpg

    Cheers!
     

Share This Page