Firewall Restrictions not working

[leeand00]

I recently bought a Buffalo WZR-HP-G300NH and threw Gargoyle 1.5.10 on it.

My intent with this device was to restrict access to social media sites such as Facebook to only certain hours of operation.

I'm testing it out by hooking it into my current router (also a WZR-HP-G300NH) and then connecting to it over the wireless to test out the blocking of restricted sites.

The Gargoyle is hooked in via it's WAN port into one of the other ports on the existing router which connects to the internet.

To attempt to setup some restrictions I have done the following:

1. Logged in to the Web Interface
2. Clicked Firewall->Restrictions from the left panel.
3. In the Access Restrictions section:
3.1 In the Rule Description: text box typed Facebook.
3.2 In the Rule Applies to: section selected All Hosts.
3.3 Checked off the All Day and Everyday checkboxes.
3.4 Unchecked All Network Access
3.5 All dropdowns except Website URL(s) have been set to Block All and Website URL(s) itself has been set to Domain contains: with a value of facebook.com
3.6 I then clicked the Add button.
4. I then clicked the Add New Rule button.
5. Clicked Save Changes and waited a fairly long time...

Please Wait While Settings are Applied the popup read.

Then I try to access facebook.com with my browser, and BOOM! I can still access the site. So either I'm missing something in the settings or it doesn't work on my router.

[leeand00]

I changed the configuration, but it appears that the changes I am requesting are making their way into iptables.

After running

Code: Select all

iptables -L

I can see the resulting rules:

Code: Select all

Chain egress_restrictions (1 references)
target     prot opt source               destination         
egress_whitelist  all  --  anywhere             anywhere            
REJECT     tcp  --  anywhere             anywhere            tcp dpt:www connmark match 0x10000/0xff0000 WEBURL --contains facebook --domain_only reject-with tcp-reset 
REJECT     tcp  --  anywhere             anywhere            tcp spt:https dpt:https WEBURL --contains facebook --domain_only reject-with tcp-reset 

[BashfulBladder]

I don't use access restrictions, but perhaps you can use this image as a guide:

http://www.gargoyle-router.com/wiki/lib ... ctions.jpg

[leeand00]

Anybody know anything about this yet?

[vladtheodor]

Want to block yieldmanager.com and adcash.com
Not working. None of the restriction rules in Gargoyle.
Only in Opendns, added manually, 25 words/links limit.
But i use only Nortondns, i found better as Opendns.
I have only 1.168 MBytes free in my router, can i install something to block links !?

[Tim_the_bloke]

I too have tried to implement restrictions to block a few sites. Not working. I keep checking the settings against the images offered as instructions.
Yes, I saved it. I also rebooted the router.
No joy yet.

[Nreokfkorer]

This posts is very informative. Thank you!

[chaseme5]

Hi I tested a couple restrictions.

http://www.youtube.com - restriction did block the site.
http://www.yahoo.com - restriction did not block the site.

So some websites are not being restricted as instructed.

Maybe it has to due with the version of HTML the website is coded in,
I do not know. But software can be weird like that.