This article explains how to block Facebook and other sites that use SSL with Panda GateDefender Integra eSeries.
How to create an access policy to block Facebook and Twitter (with Not-Transparent Proxy)
- From the GUI, go to Proxy > HTTP > Access Policy and select Add Access Policy.
- In the Source Type combo box, select the type of interface you want to block:
In this case, you need to select ANY.
- In the Destination Type combo box, select the type of interface you want to block:
In this case, you need to select Domain.
- Type the names of the domains you want to block in the Insert Domains (one per line) section. In the case you want to block all sub-domains, simply add a dot before the domain's name.
Note: Remember that you must configure your browser to use proxy also for SSL.
- In the Access policy combo box, select Deny access.
- Under Position, select First position.
Make sure the First position is selected because, if the rule is positioned after an Allow access rule, your blocked rule will be ignored.
- Click Create/Update rule button and when a green pop-up is displayed, click Apply to save the changes.
How to create a rule in DNS proxy to block Facebook and Twitter
This information is useful only if you have HTTP proxy set in transparent mode. This is so because it is able to intercept HTTP traffic but not HTTPS or if HTTP proxy is not enabled.
- From the GUI, go to Proxy > DNS proxy > DNS Routing > Add New Custom Name server for a Domain.
- In the Domain text box, type the domain name that you want to block (i.e. facebook.com).
- Enter the DNS Server IP address (i.e. 127.0.0.1) or enter an internal/external DNS server that resolves the domain facebook.com to a custom landing page.
- Additionally, you can insert a remark (Remark text box) describing why you added the rule.
- Click Add button to complete the process.