Friday, November 28, 2008

How to Block Websites with Mikrotik proxy

This example will explain you “How to Block Web Sites” & “How to Stop Downloading”. I have use Web-Proxy test Package.

First, Configure Proxy.

/ip proxy
enabled: yes
port: 8080
cache-drive: system
cache-administrator: "ASHISH PATEL"
max-disk-cache-size: none
max-ram-cache-size: none
cache-only-on-disk: no
maximal-client-connections: 1000
maximal-server-connections: 1000
max-object-size: 512KiB
max-fresh-time: 3d

Now, Make it Transparent

/ip firewall nat
chain=dstnat protocol=tcp dst-port=80
action=redirect to-ports=8080

Make sure that your proxy is NOT a Open Proxy

/ip firewall filter
chain=input in=interface= src-address=
protocol=tcp dst-port=8080 action=drop

Now for Blocking Websites

/ip proxy access action=deny

it will block website, we can always block the same for different networks by giving src-address. it will block for particular source address.

we can also stop downloading files like .mp3, .mp4.....,etc

/ip proxy access
path=*.mp3 action=deny
path=*.mp4 action=deny

try with this also

/ip proxy access
dst-host=:mail action=deny

this will block all the websites contain word "mail" in url.

Example: it will block,,.....

No comments: