Block websites by url [Resolved]

bealem · July 2, 2006, 3:16pm

Hi,

Just installed Comodo Personal Firewall, so still getting to know it.

One question (I’ve searched the forum but not found anything) is it possible to block websites by url?
I guess it would be a Network Rule, but I’ve tried a couple of variations and cannot get it to work.

Cheers
Mike

memo1337 · July 2, 2006, 3:38pm

I don’t think it is possible to block a site by its URL. But you could block the site by blocking the site’s hostname TCP Out at port 80.
This may already be in the feature request list, however.

panic · July 3, 2006, 5:32am

I just did a quick test and you can block a site by name.

The rule parameters are as follows;

Action : Block
Direction : In/Out
Source : Your LAN Zone or individual IP
Remote - Host : www.something_or_other.com
Protocol : Any

To make this rule work, I had to move it ABOVE the default ALLOW-IN-ZONE-ANY-ANY rule. If it was below this rule in the list the named site would not be blocked because it would be a valid response to an originating request. If the BLOCK rule is moved above the default rule, only the named site is blocked, other sites can still be accessed.

Have a ■■■■■ and see if this works for you.

Hope this helps,
Ewen
(WCF3) (WCF3) (WCF3)

justin1278 · July 3, 2006, 7:40am

Not that I didn’t believe Panic but I had to try it for myself, and it works :o

panic · July 3, 2006, 7:53am

I didn’t believe me either so I tested.

memo1337 · July 3, 2006, 6:12pm

This will block every port matching the hostname specified.
If you only want to block HTTP and HTTPs (Web access - if it’s not on a custom port), make two rules, one for TCP OUT 80 and one for TCP OUT 443.
Have Fun!

panic · July 3, 2006, 6:42pm

Thanks memo. So the rule parameters to block a site by URL should be as follows;

Action : Block
Direction : In/Out
Source : Your LAN Zone or individual IP
Remote - Host : www.something_or_other.com
Source Port : Any
Remote Port - A set of ports :80,443

Are these correct? Sorry, can’t test myself at the mo, on a very controlled LAN.

Ewen

wisanggeni · July 4, 2006, 2:36am

It won’t work with any Sock-Type connection.
IE/Firefox/YM/Whatever…

*. Only valid at Direct Connection!
*. …even tried using IP, instead of TCP/UDP

Well…?

#UPDATE#
Egemen’s answer the question at this post: https://forums.comodo.com/index.php/topic,193.msg5505.html#msg5505

*. …guess there’s no cure for the “dynamic-tunnel”, then.