I have tried to find info on how to block all websites exept 2-3 that I specify.
We have this one customer setting up a call center, and they will only allow them to access 3 specific websites, and it has to be done bu URL and not ip address !
I have tried all what I could find on the internet, but nothing have worked so far, and I even managed by lock myself out of the router so I had to do a factory reset.
Please keep in mind, im no master at scripting, so please be very specific throwing CLI commands and so on…
First of all - enable safe mode before playing with configuration
Second, configure transparent proxy (link to wiki http://wiki.mikrotik.com/wiki/Manual:IP/Proxy ), set max-cache-size to none (you don’t need cache anything)
Third, create proxy access list - first rules allow “good” webpages, last one - empty deny rule to block everything.
Also you should create addition firewall rules to block, “unwanted” traffic, that uses different protocols and ports.
After all you should double check every webpage, is it working correctly and add or change allow rules. Today webpages are very complex. For example media files often is hosted on totally different server with different domain.
