Hi,
We don't support https filtering with the proxy module, but you can block the IPs in the firewall, for that:
- Create an object for this service
- Use dig or any other tool to get the IPs providing the service
- Add these IPs to the object
- Add a firewall rule for internal networks to block the access to this object
You can also configure DNS to resolve the address to block to a different address, but this is easier to bypass using other DNSs.
Regards,
1. I have created an object "https ips", added gmail ips <74.125.236.21/22/23/24> ( which i got after ping mail.google.com)
2. Add the firewall rule to "Filtering rules for internal networks"
2.1 Decision - Deny, Source - Any, Destination - destination object - https ips, Service - any tcp,
2.2 the rule is at the top
Even after the above configuration, As a user, I can access
https://mail.google.comcan anybody help how to restrict / filter secure (https) sites through Zentyal 2.0.16
Arun