NIS: how to block range of websites?

hello, 

 

i am trying to block all the websites that end with castup.net; tried inserting *.castup.net as a blocking rule, but it doesn't work. 

e.g serverbb.castup.net, castup.net, nv-se01.se.c04dl.vds-is.castup.net.... 

 

thanks... 

Hi eplose

I tried to block www.castup.net and used copy and paste so no typing errors and from the image below its in the firewall and after restarting the computer I still gat access to the web site the firewall does not block it.  I may have put it in the wrong place or missed something if any one knows can they please post detailed steps.

 

 castup 2.jpg

 

 

ATB

 

intesec

yea, there is a problem. you have to insert the full adress "www.castup.net", as for some reason "castup.net" is not enough.  castup.net should have covered all the mutations related to the domain... :/ 

Hi eplose

The name on the image is what Norton allows you to call the rule after the firewall rule has been put in as www.castup.net, and then proceed to where there is a dialogue box that has the option to name the rule or use the default in the box that is, firewall rule, I entered in this box, castup.net, so that is what is seen in the general rules for the firewall.

 

 

ATB

 

intesec

 

try blocking outbound as well... 

Hi eplose

Have you managed to block the website if so can you please post the steps of how to do it?

 

 

ATB

 

intesec

The NIS firewall does not support FQDN based rules, nor does it support wildcards in FQDN's.

 

The rule editor UI allows you to enter a FQDN, but as soon as the rule gets evaluated, the FQDN is resolved, and the IP address is used in the actual rule.

 

Unless there is only one IP associated with the FQDN, and the IP does not change, the rule will not work as expected.

E.g. if the DNS returns geolocation based IPs, or multiple IPs, or pools of IPs, etc., the rule may end up using the incorrect IP, and not function as expected.

 

 

Pieter

thanks