10-23-2020 07:17 AM - edited 10-23-2020 08:03 AM
Hello, i just tried to restrict some of the domains that can be reach from the PCs that use my router RV320. I did follow all the steps from this link https://www.cisco.com/c/en/us/support/docs/smb/routers/cisco-rv-series-small-business-routers/smb4286-access-rules-configuration-on-rv320-and-rv325-vpn-routers.html
and i've done everything correctly but the domains still can be reach. Any idea why? Any help it will be much appreciated!
P.S. Is it possible the reason to be something in the Access rules?
Solved! Go to Solution.
11-03-2020 12:50 AM
Hello,
You can't block websites that use HTTPS encryption with the RV320 routers unless you have the web filtering model - RV320-WB-K9-xx. Content/URL filtering is looking for HTTP traffic only. As a workaround, you can create an access rules that block communication from your LAN to the public IP addresses of the sites you want to block. So you have to issue nslookup <FQDN> in your PC command prompt (attached image) to get all public IP addresses and then create the deny rules.
Hope that helps,
Regards,
Martin
10-23-2020 07:26 AM
Can you post the screenshot , i am more intrested to see first rule.
10-23-2020 08:09 AM
10-28-2020 05:06 AM
Hello again,
any suggestions for what should i try to fix it?
Thanks in advance!
10-30-2020 08:27 AM
Hi,
As per the attached screenshot ‘All Traffic’ allowed from 3 different /24 IP subnet to any destination and from USB interfaces traffic are denied.
What are the domains you are trying to restrict using RV320 router and how you are trying to restrict those domains in RV320 router currently?
10-30-2020 11:40 AM
Hi Sujoy ,
i didn't explain the situation correctly and also posted wrong link.
This is the link which i followed step by step trying to block some forbidden domains:
https://www.cisco.com/c/en/us/support/docs/smb/routers/cisco-rv-series-small-business-routers/smb4231-content-filter-configuration-on-rv320-and-rv325-vpn-router-s.html
So basically i wanna stop all users that use the router to reach few web sides.
I did everything from the link above but the web sides still can be reach.
I am up for any suggestions.
Thanks in advance
11-03-2020 12:50 AM
Hello,
You can't block websites that use HTTPS encryption with the RV320 routers unless you have the web filtering model - RV320-WB-K9-xx. Content/URL filtering is looking for HTTP traffic only. As a workaround, you can create an access rules that block communication from your LAN to the public IP addresses of the sites you want to block. So you have to issue nslookup <FQDN> in your PC command prompt (attached image) to get all public IP addresses and then create the deny rules.
Hope that helps,
Regards,
Martin
11-03-2020 06:14 AM
11-03-2020 08:35 AM
Hello Bobby,
The rule looks fine.
Regards,
Martin
11-04-2020 05:37 AM
Hi again Martin,
I’ve done everything as you said but it still doesn’t works.
I am attaching and screenshot of the Access rule table if you see something wrong please let me know.
Also I tried to forbid an HTTP site through the content filter but and that wasn't successful.
If you got another suggestions I am up for them!
Thanks in advance!
Regards
11-04-2020 06:08 AM
Ignore my last message, it works fine now! Thanks a lot Martin, you are great!
11-04-2020 07:36 AM
11-10-2020 04:56 AM - edited 11-10-2020 05:15 AM
Hello it's me again. I just tried to forbid cs-online.club but as you can see on the screenshot that you shared the site got 3 different IP addresses, it's not just one so I created 3 access rules, one for every single IP but the site still can be reach. Any suggestions what should I do? I am attaching screenshots of the access rules that I created.
11-02-2020 11:01 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide