I've been asked to only allow users to access a small subset of domains and IP addresses on the internet (http and https). For example, say: *.acme.com and *.acme2.com and the IP of 12.34.56.78. All told, there are only about 12 domains and IP's that we want to allow.
I've looked at several ways of doing this, but can't seem to make it work reliably. Obviously, the IP addresses are simple with normal filtering rules, but I'm having real problems with the domain names. I've tried layer7 rules and must be doing something wrong. I've also tried the web proxy, but couldn't figure out how to make it proxy/block everything I *don't* want to allow through.
Can someone provide me an example or steer me in the right direction?
Thank you all in advance!