Block a Website with Access Rule
yfriedman
Newbie ✭
I'm trying to block a website using an access rule on my SonicWall router, but it isn't working. Here is my configuration:
- Created an address object:
- Zone Assignment: WAN
- Type: FQDN
- Entered the domain with a
*.before the domain name
- Created an access rule:
- From: LAN
- To: WAN
- Action: Deny
- Destination Address: Set to the address object created
- All other settings left to 'Any'
I've tried this configuration with multiple domains and even the IP addresses of the websites, but the rule is still not working. Can someone explain why this rule might not be functioning as expected?
Category: Entry Level Firewalls
0
Answers
Does your FQDN object holds any IP addresses, if not it does not get populated and is useless for the Access Rule.
If you're using wildcard objects e.g. *.domain.com the Firewall needs to see the DNS traffic to catch the response. This does not work if you using something like DoH etc. Another possible reason could be if you have not activated the option "dns host name lookup over tcp for fqdn" and the response over UDP got truncated.
—Michael