max.moura escreveu:Bom dia!
Qual a versão está utilizando do BFW?
Para bloqueios de sites pode-se utilizar o Dansguardian.
Na Wiki possui material para referência:
Dansguardian
http://pt-br.wiki.brazilfw.com.br/Dansguardian/pt-br
Addon painel de controle Dansguardian (facilita a administração)
http://www.brazilfw.com.br/forum/viewtopic.php?f=58&t=80730
A forma com a qual você esta fazendo o bloqueio (ACL) é mais específica e requer um pouco mais de conhecimento, com o Dansguardian facilita o processo para bloqueio dos sites que deseja.
Para o bloqueio no Facebook utilizo esta seguinte regra:
- Código: Selecionar todos
##BLOQUEIO DO FACEBOOK
FACEBOOK_IP_RANGE="31.13.64.0-31.13.127.255 31.13.24.0-31.13.31.255 74.119.76.0-74.119.79.255 69.63.176.0-69.63.191.255 69.171.224.0-69.171.255.255 66.220.144.0-66.220.159.255 204.15.20.0-204.15.23.255 173.252.64.0-173.252.127.255"
iptables -N FACEBOOK
## FACEBOOK DENY
for face in $FACEBOOK_IP_RANGE; do
iptables -I FORWARD -m tcp -p tcp -m iprange --dst-range $face --dport 443 -j FACEBOOK
iptables -I FORWARD -m tcp -p tcp -m iprange --dst-range $face --dport 80 -j FACEBOOK
done
## FACEBOOK_ALLOW="192.168.254.101 192.168.254.102 192.168.254.107 192.168.254.108 192.168.254.106 192.168.254.109" #Diretoria
## for MSR_LIBERADO in $FACEBOOK_ALLOW; do
## iptables -I FACEBOOK -s $MSR_LIBERADO -j ACCEPT
## done
iptables -A FACEBOOK -j REJECT
exit 0
/usr/bin/./redir.pl
Bom dia amigo, estou usando a versao 3.0.259.
Ja tentei pelo dansguardiam tb.
Fui em etc,brazil..,dansgua..listas.. banede sitelistas. e la ta assim.
#domains in banned list
#Don't bother with the www. or the http://
#The bannedurllist is for blocking PART of a site
#The bannedsitelist is for blocking ALL of a site
#As of DansGuardian 2.7.3 you can now include
#.tld so for example you can match .gov for example
#The 'grey' lists override the 'banned' lists.
#The 'exception' lists override the 'banned' lists also.
#The difference is that the 'exception' lists completely switch
#off *all* other filtering for the match. 'grey' lists only
#stop the URL filtering and allow the normal filtering to work.
#An example of grey list use is when in Blanket Block (whitelist)
#mode and you want to allow some sites but still filter as normal
#on their content
#Another example of grey list use is when you ban a site but want
#to allow part of it.
#You can have multiple .Includes.
# Time limiting syntax:
# #time: <start hour> <start minute> <end hour> <end minute> <days>
# Example:
##time: 9 0 17 0 01234
# Remove the first # from the line above to enable this list only from
# 9am to 5pm, Monday to Friday.
# List categorisation
#listcategory: "Banned Sites"
#List other sites to block:
facebook.com
badboys.com
#Blanket Block. To block all sites except those in the
#exceptionsitelist and greysitelist files, remove
#the # from the next line to leave only a '**':
#**
#Blanket SSL/CONNECT Block. To block all SSL
#and CONNECT tunnels except to addresses in the
#exceptionsitelist and greysitelist files, remove
#the # from the next line to leave only a '**s':
#**s
#Blanket IP Block. To block all sites specified only as an IP,
#remove the # from the next line to leave only a '*ip':
#*ip
#Blanket SSL/CONNECT IP Block. To block all SSL and CONNECT
#tunnels to sites specified only as an IP,
#remove the # from the next line to leave only a '*ips':
#*ips
facebook.com
oque vc acha ?