Buy or Renew
Buy or Renew
NOTICE: OpenDNS reactivated for users in Belgium. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
94
Views
1
Helpful
2
Replies

Facebook

tranthanhhai2299
Level 1
Level 1

‎12-15-2016 10:50 PM

Hi,

Please tell how can I block access to facebook on opendns?

My Router cannot block https.

Is it the way to block facebook IP range on router?

Or any other solution to block facebook at work.

 

C:\Users\PUR-T>nslookup -type=txt debug.opendns.com.
Server: resolver1.opendns.com
Address: 208.67.222.222

Non-authoritative answer:
debug.opendns.com text =

"server m7.hkg"
debug.opendns.com text =

"flags 20 0 50 1950000000011000000"
debug.opendns.com text =

"originid 63114391"
debug.opendns.com text =

"actype 2"
debug.opendns.com text =

"bundle 9420343"
debug.opendns.com text =

"source 113.160.154.151:62492"

Labels:
0 Helpful
2 Replies 2

mattwilson9090
Level 4
Level 4

‎12-15-2016 11:04 PM

There are several ways that OpenDNS can be used to block Facebook. If you block the Social Networking category that will block Facebook along with many other social networking sites.

Otherwise you need to start blocking individual domains, starting with Facebook.com. That should block the website itself, but may or may not block apps or websites that leverage Facebook for sign-in and other purposes.

As for blocking https or IP ranges that's not something that OpenDNS can do. You'll need to check the manual or support for your router for that.

rotblitz
Level 6
Level 6

‎12-16-2016 10:13 AM

"block facebook at work"

If you want to use OpenDNS with content filtering outside a home network, you are to upgrade to a paid version of Cisco Umbrella.
https://umbrella.cisco.com/products/features/opendns-cisco-umbrella

"Or any other solution to block facebook at work."

Yes, many solutions.  You could use software being able to block things, or you block specific IP addresses on your internet gateway or firewall or end user devices.  Or you simply edit your local hosts files to add entries like this:

0.0.0.0    facebook.com  www.facebook.com
::ffff:0:0 facebook.com  www.facebook.com

Or you could run an internal proxy server as usual in corporate networks.  Also an Active Directory GP push is possible which would block access to Facebook in browsers on AD controlled devices.

"My Router cannot block https."

Nothing between end user device and webserver can block specific HTTPS URLs, because these are encrypted and not visible.  But all DNS methods or methods where IP addresses can be used to block access do not care about HTTPS, including all the ones I listed above.

0 Helpful
Customers Also Viewed These Support Documents