Page 1 of 1

firewall restrictions not working?

Posted: Thu Nov 17, 2016 1:07 am
by gsnorcal
Hi,

I'm having problems understanding the firewall restrictions. For example, I have a computer on the network that I want to ONLY be able to access github.

Here's my config, but I can still connect my browser to other IP's (e.g. Google).

My config:

Image

What am I not understanding?

Thanks,
Dave

Re: firewall restrictions not working?

Posted: Thu Nov 17, 2016 1:10 am
by gsnorcal
I also have this rule, which is blocking apple.com, http://www.apple.com, but not discussions.apple.com.

Obviously I'm confused in my expectations.

Image

Thanks,
Dave

Re: firewall restrictions not working?

Posted: Thu Nov 17, 2016 3:12 am
by Lantis
Unsure about your first one, would have to do more digging.

But for your second one, it is only blocking apple.com because by default the apple website is insecure (not https). if you manually navigate to https://www.apple.com/ you'll find that the connection should go through.
There is no insecure version of discussions.apple.com and therefore it cannot be blocked.
SSL encryption prevents us from looking into the packet and finding out what url it came from.

Re: firewall restrictions not working?

Posted: Thu Nov 17, 2016 4:02 pm
by gsnorcal
Understood, @lantis about looking at the hostname. But for the first one, it seems pretty clear that I want to block ALL access except for one IP and one port.

Curious. Any more clues appreciated.

It sucks to be so bandwidth limited. I've never put so much energy into trying NOT to be connected. ;-)

Dave

Re: firewall restrictions not working?

Posted: Tue May 08, 2018 6:42 pm
by anon123654
To be honest with you I have never been able to get the Gargoyle firewall to work therefore I consider it broken. Is you cannot get a whitelist to work i.e. block unless connection provably from IP/Address then there is something wrong in the design. I can understand how blacklists fail, due to being unable to see the full details, but not whitelists where the default action is to block unless rule matched.

Whilst open firmware on routers has proved handy I will be moving to using pfsense on a VM with dedicated passed through NICs in order to truly get some firewall restrictions that work.

Re: firewall restrictions not working?

Posted: Tue May 08, 2018 8:04 pm
by d3fz
Latest Gargoyle builds now supports HTTPS blocking.

Why don't you give it a try before giving up on Gargoyle? :)