Restricting internet access to certain hours of the day

Forums Network Management Firewall, Traffic Shaping and Net Balancer Restricting internet access to certain hours of the day

  • This topic is empty.
Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • January 29, 2013 at 7:29 pm #43563
    DrmCa
    Participant

    I need to set up 2 workstations for Internet access only between 16:30 and 22:00 on the weekdays. Tried to accomplish that using the rules below, but now it’s mid day and both still have access. Rules are enabled:

    3 	* 	* 	DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 source IP range 10.10.10.20-10.10.10.21 TIME from 22:00:00 to 00:00:00
    

    
4 	* 	* 	DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 source IP range 10.10.10.20-10.10.10.21 TIME from 00:00:00 to 16:30:00 on Mon,Tue,Wed,Thu,Fri

    What am I doing wrong?

    This is the 1st part only. Actually I would need to leave Skype enabled, but first I want to figure why the rules above failed to block web browsing outside of permitted hours from those machines.

    Thank you!

    PS: But in light of the above, I find it strange that the following rule works:

    5 	* 	* 	DROP udp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 udp dpt:53

    That rule successfully prevents local machines from using DNS other than OpenDNS. I tested that in nslookup and it resolves as long as router IP is used as a server. Any other DNS server does not resolve.

    January 30, 2013 at 7:30 pm #52652
    DrmCa
    Participant

    As soon as I’ve added TCP protocol and port 80 to the 2 rules above, they started working. Guess, it could be a bug in 1.0, dunno if fixed in 2.0rc but going to try it soon

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.