This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Can I completely cut off a device from inet access at 9pm?

Ok, so my son and daughter both have tablets and my wife has decree'd that their internet usage should end at 9pm...

How would I configure the firewall to completely cut off all internet access to those two machines (based on mac address? perhaps) at 9pm and then reopen it at 7am?

I tried making a firewall rule to deny all services to mac addresses, but normal web surfing traffic is still working. I even set the block rule as rule #1 in firewall settings, and it still didn't help. What am I doing wrong?

BTW, I'm using the free home edition, if that matters, and it's up to date as of today.

This thread was automatically locked due to age.

0 scorpionking over 11 years ago

1. You can't block MAC addresses by firewall, only IPs.
2. Do you have Web Protection active? If yes, this comes before manual firewall rules (see BAlfson's "Rulz" in the General sectin of this board), so you also will have to create a separate WebFilter Profile.
Cancel
Vote Up 0 Vote Down

Cancel
0 solae over 11 years ago

Hi scorpionking

Thats not true, it is now Possible to make a Firewall Rule with source MAC address: Creating firewall rules based on source MAC addresses in Sophos UTM
Cancel
Vote Up 0 Vote Down

Cancel
0 Trimble Epic over 11 years ago

Yes, I have web protection active, it's in Transparent Mode, hopefully blocking ****...

I've had issue with my oldest son who has discovered that he can see boobies if he googles "boobs" while logged into his gmail account... apparently the firewall doesn't block SSL traffic.. I'm still trying to learn how to fix that.. when I turn on the checkmark for "Scan HTTPS (SSL) Traffic", my wife complains that her iPhone's email client goes nuts... I could use help with that also...

Anyway, if trying to specify mac address isn't the right way to do it, then I'm ok with giving those machines a static IP via DHCP and then blocking them by IP address instead... but the main question is - how do i get the firewall (or web protection.. whichever) to block ALL traffic, including normal port 80 web browsing? I tried creating a firewall block rule and youtube (the prime target) still worked.
Cancel
Vote Up 0 Vote Down

Cancel
0 scorpionking over 11 years ago

@solae:
Sorry, I must have missed that...

@Trimble Epic:
That's because Website traffic (ports 80 HTTP and 443 HTTPS) are handled by the Web Protection, which comes before manual firewall rules. You will have to work with Web Protection Profiles: Create an new profile for the desired devices using a time based blacklisting. Also have a look at the Online Help, it's pretty well explained there...

Your HTTPS problem is because of how SSL works. The UTM has to intercept the SSL traffic, decrypt it, then scan it, then reencrypt it (with its own certificate) and finally send it to the client. So what you have to do is to import the UTM certificate as Trusted CA into all your devices and browsers. You can easily access your UTM cert via http://passthrough.fw-notify.net/cacert.pem, it points to the cert on your local UTM... Alternately download it from WebAdmin: Web Protection -> Web Filtering -> HTTPS CAs.
Now you can enable HTTPS scanning.
Cancel
Vote Up 0 Vote Down

Cancel