In testing, I found it did not stop a download in-progress (does not stop an established connection). I need to stop users from downloading 24/7 in a system that provides free internet access.
Can some on point me in the right direction? Can additions be made to the below filter rule to make it do both functions.
Code: Select all
add action=reject chain=forward out-interface=ether1-gateway protocol=tcp reject-with=tcp-reset src-mac-address=00:00:00:00:00:00