I want to block adult sites on my LAN so that no one can view any of rubbish sites.
how this will possible?
how do you classify an adult site? if there is a questionable picture on a blog, is it an adult site? and if there are three such pictures, but in general it’s about something else entirely?
i just want to block all adult (x) sites on my local area network.
so that no one can view any nude or adult sites.
i hope this time i m very clear.
Search the forums, the question pops up a lot.
if you use web proxy and want to block all site include sex word
just add this rule
/ip proxy access> add dst-host=:sex action=deny
and if u dont use web proxy u should add it to firewall (be careful it’s not perfect way )
in this rule will drop all connection with sex word
/ip firewall filter> add chain=forward action=drop content=sex
For simple adult site blocking use OpenDNS (www.opendns.com), register on it, and set the preferences, your ip, what you want to block ?video, porn etc
then use dns server from OpenDNS , use mikrotik web proxy , and redirect all trafic port 80 to mikrotik web proxy
its simple…
We run a http://dansguardian.org/ server for a school. Reroute port 80 traffic to it via the web proxy server and bingo.
I use opendns, but without proxy. Just made the free opendns account and entered this rule in NAT. This will send all DNS lookup’s to the opendns server.
2 ;;; Open DNS
chain=dstnat action=dst-nat to-addresses=208.67.222.222 to-ports=53
protocol=udp src-address=192.168.0.0/24 dst-port=53
if u know name of them try block them from ip>> dns
add name of site
address =any address same 163.121.128.210
if u don`t know or count them try opendns just go
opendns.com them do account in site
and use them dns in ur server
WARRNING if u have dyn ip u must search for script to send ur new ip to opendns service 
Sexual sites are totally blocked in some countries.
i m sure that they donot block millions and trillions sexual sites manully. they have do some configuration to automatically stop every sites which have that stuff.
i also need to block each and every site in network.
i really tried to block them one by one manually.
please experts i need ur urgent help.
this script i also need.
Please Guide.
If you need anything more advanced than the suggestions listed here, you will need to run a proxy server on a linux/windows computer and use a porn filter there. There are several companies out there that do the necessary manual labor required to attempt to filter porn sites. Remember that these porn filters are never 100% successful and will always have both false negatives and false positives.
i need solution in Mikrotik Platform. Please dont refer us to any other Operating systems.
Normis, fewi Please find this solution for us.
Thanks.
Mikrotik solution:
Install mikrotik proxy in Australia and let their government filter for you (suggestion based on latest news, YMMV)
Second best solution would be, as suggested earlier, use OpenDNS, Scrubit etc.
from my knowledge, expert never give free solution 
may you will try to hier one.
i am using Mikrotik for more than a year
and i have a bulk of experience just due to the help of Experts without any charges or fees.
i hope this time i have a solution also as i had before.
still waiting for the reply from Experts Like Fewi & Normis.
Thanks.
Ok, here the explicit statement: you aren’t getting the solution you want because it does not exist. You cannot do this natively on Mikrotik without a lot of manual work, listing IP addresses and thousands of keywords. That process would also slow down the router to a crawl and would not work well. RouterOS is good at routing and filtering on layer 3 and 4, not so much at application inspection on a large scale.
Use a third party proxy, or rely on OpenDNS. Even on those doing it for free is going to require some work. There are free filter lists for Squid, for example, and there is a quasi community edition of Dan’s Guardian. Most companies and large entities (governments etc.) use expensive, paid for systems.
Hi
My ISP gives me only private IP, can i use open DNS with private IP?
thanks
You can use free DNS that does not require public IP. Here is the one I am very happy with (Norton ConnectSafe):
Policy A — Security
This policy blocks all sites hosting malware, phishing sites, and scam sites. To choose Policy A, use the following IP addresses as preferred and alternate DNS server addresses:
199.85.126.10
199.85.127.10
Policy B — Security + Pornography
In addition to blocking unsafe sites, this policy also blocks access to sites that contain sexually explicit material. To choose Policy B, use the following IP addresses as preferred and alternate DNS server addresses:
199.85.126.20
199.85.127.20
Policy C — Security + Pornography + Non-Family Friendly
This policy is ideal for families with young children. In addition to blocking unsafe sites and pornography sites, this policy also blocks access to sites that feature mature content, abortion, alcohol, crime, cults, drugs, gambling, hate, sexual orientation, suicide, tobacco, or violence. To choose Policy C, use the following IP addresses as preferred and alternate DNS server addresses
199.85.126.30
199.85.127.30
Sources:
https://en.wikipedia.org/wiki/Norton_ConnectSafe
https://dns.norton.com/configureRouter.html
thx for sharing