Todos nós já sofremos para bloquear Facebook Https, nem o novo Addon Lockon funciona bem com bloqueio de facebook. Eu só consegui bloquear Facebook Https inserindo as regras de IPTABLES no arquivo rc.local. Feito com informações amplamente divulgadas neste forum. Agora estou com um impasse, necessito desbloquer o facebook no horário de almoço, segue a forma que bloqueei o face no rc.local
#Bloqueio do https://www.facebook.com (bloqueio geral)
iptables -A FORWARD -p tcp -s 192.168.150.0/24 -d 69.63.176.0/20 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.150.0/24 -d 69.63.176.0/20 --dport 443 -j REJECT
iptables -A FORWARD -p tcp -s 192.168.150.0/24 -d 69.63.0.0/16 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.150.0/24 -d 69.63.0.0/16 --dport 443 -j REJECT
iptables -A FORWARD -p tcp -s 192.168.150.0/24 -d 204.15.0.0/16 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.150.0/24 -d 204.15.0.0/16 --dport 443 -j REJECT
iptables -A FORWARD -p tcp -s 192.168.150.0/24 -d 31.13.64.0/18 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.150.0/24 -d 31.13.64.0/18 --dport 443 -j REJECT
iptables -A FORWARD -p tcp -s 192.168.150.0/24 -d 173.252.64.0/18 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.150.0/24 -d 173.252.64.0/18 --dport 443 -j REJECT
iptables -A FORWARD -p tcp -s 192.168.150.0/24 -d 66.220.144.0/20 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.150.0/24 -d 66.220.144.0/20 --dport 443 -j REJECT
iptables -A FORWARD -p tcp -s 192.168.150.0/24 -d 66.220.158.0/20 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.150.0/24 -d 66.220.158.0/20 --dport 443 -j REJECT
iptables -A FORWARD -p tcp -s 192.168.150.0/24 -d 66.220.152.0/21 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.150.0/24 -d 66.220.152.0/21 --dport 443 -j REJECT
iptables -A FORWARD -p tcp -s 192.168.150.0/24 -d 69.171.224.0/19 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.150.0/24 -d 69.171.224.0/19 --dport 443 -j REJECT
iptables -A FORWARD -p tcp -s 192.168.150.0/24 -d 69.171.229.0/19 --dport 443 -j REJECT
iptables -A FORWARD -p udp -s 192.168.150.0/24 -d 69.171.229.0/19 --dport 443 -j REJECT
#
Alguém pode ajudar?