Date: Tue, 13 Jun 2023 20:24:42 +0000 From: Holger Kipp <Holger.Kipp@alogis.com> To: "ml@ft-c.de" <ml@ft-c.de> Cc: "stable@freebsd.org" <stable@freebsd.org> Subject: Re: ipfilter block an vhost name Message-ID: <AB6584C1-D15B-42B8-8F26-2ED236F190BC@alogis.com> In-Reply-To: <4cb819068e68768a8ad32f558b2225464a823dba.camel@ft-c.de>
index | next in thread | previous in thread | raw e-mail
Hi there, > On 13. Jun 2023, at 22:02, ft <ml@ft-c.de> wrote: > > Hello > > It is possible to block all in and/or out packages from an url > with no logging > any ports (or http and https) I assume this is a question. You can use FQDNs but they will be resolved during startup (if DNS is available), so effectively this will just use the IP address. > It seem it is a vhost, the ip have more url. > > my example: > block in from "brigitte.de" to any > block out from "brigitte.de" to any Last line should be block out from any to "brigitte.de" > Franz If you want to block specific domains and subdomains only, but not full IP addresses, you need to use some mandatory http(s) proxy, though (eg squid). Best regards Holgerhome | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AB6584C1-D15B-42B8-8F26-2ED236F190BC>