ScrubIT Porn Blocking DNS

Reefbum · March 15, 2007, 7:44am

I have a hotspot network setup at a public facility that I am being required to block porn sites on.

http://www.scrubit.com provides free DNS servers that deny access to these types of sites. ScrubIT DNS IP’s are 67.138.54.100 & 207.225.209.66

I use these DNS servers at my home on the Linksys router there and it works great to keep the kids away from these types of sites however when I put these DNS servers into the MT hotspot, hotspot no longer works. The login page fails to load and even sites that I have listed in the walled garden cannot be reached. If I change the DNS back to our default IP’s things go back to normal.

Any help would be great, I am sure there are other MT users that could find this free service useful.

csickles · March 15, 2007, 5:54pm

The issue seems to be related to the DNS proxy.
My guess is a time out issue.
From my AZ network I am seeing about 8 to 10 hops to set to the DNS server.

The first server does not answer at all, the second looks to take too long.

It you put the dns address in the dhcp scope. it works great for non proxy / hotspot users. but proxy and hotspot users fail due to the DNS failure.

This is a good 90% solution for public access nets.
(Remember that ip addresses or proxy sites would still work)

Craig

Reefbum · March 30, 2007, 11:40pm

Is there any way to disable the MT DNS proxy in Hotspot?

I would like to find a solution to this porn issue so that our public solution will be in compliance.
ScrubIt seems to offer a “Best Effort” solution that would be very easy to use. Unfortunately they allow users to bring their own laptops so having control over the PC is not an option for us.

shielder · April 2, 2007, 10:07am

if you want to block any sites, i suggest you using ipcop (http://www.ipcop.org). It provides some add on and update on websites that we normally wish to block depending on the category like, porn, abusive, gambling or anything. But of course, you need to add another computer as the proxy (ipcop) to block those pages.

ps. normally i use http://www.urlfilter.net as the addon for ipcop to block porn site.

csickles · April 3, 2007, 5:15pm

Yes the IPCOP proxy and DNS Proxy does work with ScrubIT.
I installed a copy of IPCOP to test and it did stop client access by name.. I did not try ip address yet..

You could front end your MikroTiks with IPCOPS or route a bunch of hotspot systems back to a single IPCOP box..

This could be a work arround untill the boys figure out why the MTs cant work with the ScrubIT DNS boxes…

Craig

savage · April 4, 2007, 5:11am

Implemented and trying this for a test, but so far, there’s not allow that they are blocking…

bjohns · April 4, 2007, 9:33am

http://www.opendns.com has adult content blocking on its agenda. No exact ETA at this stage however they mentioned mid this year.

I use them for URL spelling correction, searching and phishing site filtering.

Reefbum · April 4, 2007, 8:54pm

I found http://safefromsites.com

They charge a very small fee to use their DNS servers but it does work on MT with hotspot. Why the ScrubIt DNS servers do not work I still have been unable to figure out.

I am trying now to figure out how to make the safefromsites Blocked Page redirect to my own page rather than theirs.