Best way to block websites?

millers · May 15, 2009, 1:30pm

What is a best way to block websites?
As far as I know, there are 3 ways:

Transparent proxy (not suitable for me, because with Transparent proxy HTTPS sites (like eBAY, bank’s websites etc.) will not work)
Standard proxy (good solution, but users can easily bypass restrictions by entering web site’s IP address instead of banned domain name, maybe there is solution for this?)
Block websites by adding web site’s IP to firewall (work like a charm, BUT many web site’s IP addresses tend to change after some time, so I need to check them regularly. Maybe there is some script who will do this automatically?)

And I decided to allow needed websites and restrict all other sites rather than blocking restricted sites (in my opinion it’s far easier than blocking banned sites).

So question is about 2) and 3)

millers · May 18, 2009, 7:23am

Nobody has an experience with web proxy?

csickles · May 18, 2009, 3:25pm

Try OpenDNS..

If the router is registered with openDNS then the site is re-dirrected by catagory.

If you point the routers DNS to openDNS and use a fire wall rule set to force http traffic thru the proxy (on the router) then you can block by catagory and name as you see fit..

Also I “think” it MAY work for IP, by reversing the ip to a domain then replying back…

I cant remember for sure… I will looke at it again tonight… and update…