Authorize a single website with the proxy

RouterOS General
1

Hi,

I would like to block all websites in 80 and 443 except one site: http://www.orange.fr

/ip proxy access
add dst-host=*orange.fr*
add action=deny dst-port=80,443

orange.fr is well authorized, but the website uses external resources such as :
http://p.nxtck.com/an?a=1&val=&loc=http%3a//all.orfr.adgtw.orangeads.fr/nxt%3f%7Baud_ids%7D&rnd=585158679
http://c.amazon-adsystem.com/aax2/amzn_ads.js

How can I only authorize a website, as well as the resources that the site needs to run and only resources called by orange.fr?

Thank you for your help

Best regard

2

You cannot, exceptions to proxy access list are static, so unless there’s a regex pattern that will catch both orange.fr and related CDNs (highly unlikely), you’ll need to add a specific proxy ACL for each.