Blocking all connectivity by time of day

Hi Richard,

A Drop Firewall Rule will not be effective configuration here as we are looking at HTTP/S traffic which are processed by Web Proxy. To drop the traffic you must first, skip the source traffic from the transparent proxy. To do that, go to Web Filter | Filtering Option | MISC | Skip Transparent Proxy | Add the source IP of TV in Skip Transparent Mode Source Hosts/Nets. Uncheck "Allow HTTP/S traffic for listed hosts/nets" and then create a rule

Source(x.x.x.x source IP of TV) > ANY > Destination(Internet IPv4) > Drop > Time Schedule. 

Thanks

Hi Richard,

A Drop Firewall Rule will not be effective configuration here as we are looking at HTTP/S traffic which are processed by Web Proxy. To drop the traffic you must first, skip the source traffic from the transparent proxy. To do that, go to Web Filter | Filtering Option | MISC | Skip Transparent Proxy | Add the source IP of TV in Skip Transparent Mode Source Hosts/Nets. Uncheck "Allow HTTP/S traffic for listed hosts/nets" and then create a rule

Source(x.x.x.x source IP of TV) > ANY > Destination(Internet IPv4) > Drop > Time Schedule. 

Thanks

Since he said webfilter was turned off there is no point for that exception.

"Time Period" works better in allow rules

So, this is the top rule in my firewall:

https://imgur.com/TLBg0JV

This is not time filtered right now, so is aimed at blocking ALL traffic from my phone and TV (using the phone to test).

The web filter is on, but the phone is in the Skip list:

https://imgur.com/BoxW8yz

The phone still works fine, browses the internet, etc.

If I turn off the Web filter, the phone stops working, but obviously I want the filter on.

If I set up a time based web filter, so everything is denied for that host after 22:00, and allowed in the day, netflix doesn't work even during the day, as netflix needs an exemption, or for the host to be in the Skiplist.

It looks like I'm just stuck entirely?

Edit: My current (frankly crazy) solution idea is to put two UTMs, one behind the other, so that I can use the firewall rule on one and the web filter on the other.......

No need to do that frankly crazy [:D]

1) As sachingurung said before: Uncheck "Allow HTTP/S traffic for listed hosts/nets" (in your second printscreen)

2) Create a rule in the Firewall to allow trafic for the TV in the Desired time period, not to block (this is how it works)

This will create a hidden firewall rule and you dont want that