Although the Firewall Restriction features currently built into Gargoyle are great they can easily be circumvented by VPN products such as Hotspot Shield.
If you can do a bit of coding you could use iptables to shut down all but a couple of ports to prevent VPN but you would likely wreck the way the Gargoyle GUI works.
So I was thinking that perhaps the QoS GUI could be adapted to block this type of usage (ie. "block all ports except"...).
I notice that I'm not the only member interested in Parental Controls. I'd be interested in any comments regarding this idea.
PS. An example of the iptables code I'm referring to can be found here
Getting around the Restrictions
Moderator: Moderators
-
uncle john
- Posts: 146
- Joined: Sun Jun 21, 2009 11:27 pm
- Location: Australia
-
uncle john
- Posts: 146
- Joined: Sun Jun 21, 2009 11:27 pm
- Location: Australia
Re: Getting around the Restrictions
Oops. Silly me. The ability to block ports or "All ports except" is already built in Firewall Restrictions. Blocking all ports except 53, 80 and 443 did stop Hotspot Shield being activated. However it also prevented me from going to all the websites I tried.
Next I tried setting restrictions to block all domains except wikipedia.org and that failed to stop Hotspot Shield.
Then I tried setting restrictions to Block All and exceptions to Permit Only domains including wikipedia.org. That did the trick. I couldn't access anything except Wikipedia and Hotspot Shield couldn't be activated.
Next I tried setting restrictions to block all domains except wikipedia.org and that failed to stop Hotspot Shield.
Then I tried setting restrictions to Block All and exceptions to Permit Only domains including wikipedia.org. That did the trick. I couldn't access anything except Wikipedia and Hotspot Shield couldn't be activated.