+ Post New Thread
Page 2 of 2 FirstFirst 12
Results 16 to 22 of 22
Internet Related/Filtering/Firewall Thread, Filtering at home in Technical; I only allow out 208.67.222.222 and 208.67.220.220 from my router for DNS. No problem changing them the Internet would stop ...
  1. #16
    nicholab's Avatar
    Join Date
    Nov 2006
    Location
    Birmingham
    Posts
    1,493
    Thank Post
    4
    Thanked 97 Times in 93 Posts
    Blog Entries
    1
    Rep Power
    50
    I only allow out 208.67.222.222 and 208.67.220.220 from my router for DNS. No problem changing them the Internet would stop working. Proxys should be blocked by opendns. Pfsence is the best firewall you can run on low powered hardware.

  2. #17
    catshilllearning's Avatar
    Join Date
    Feb 2013
    Location
    Worcestershire
    Posts
    30
    Thank Post
    1
    Thanked 3 Times in 3 Posts
    Rep Power
    4
    I agree with the suggestion that you find out if your ISP offers this service. Many do. It is the advice I give to parents who ask about filtering software following my Online Safety for Parents presentations.

  3. #18

    Join Date
    Nov 2011
    Location
    Cambridgeshire
    Posts
    522
    Thank Post
    141
    Thanked 75 Times in 67 Posts
    Rep Power
    19
    Article in PC Pro a few days ago covered what the ISPs are doing.

    BT Homehubs won't let you change the DNS, so until BT get their network level solution live, the only solutions I can recommend to parents with BT at home who ask me involves buying and configuring more kit.

  4. #19

    Join Date
    Jul 2013
    Posts
    1
    Thank Post
    1
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    "[Any Linux-powered router that enables you to create iptables rules should do. e.g. an Asus RT-N66U with the TomatoUSB firmware."

    I have the Asus RT-N66 router with the factory software installed. Is there a way to accomplish with the factory load? I'm not sure I'm up to loading that.

  5. #20


    Join Date
    Feb 2007
    Location
    51.403651, -0.515458
    Posts
    8,896
    Thank Post
    226
    Thanked 2,674 Times in 1,971 Posts
    Rep Power
    786
    Quote Originally Posted by Fatherof9 View Post
    I have the Asus RT-N66 router with the factory software installed. Is there a way to accomplish with the factory load? I'm not sure I'm up to loading that.
    Not sure, but you could try the AsusWRT-Merlin firmware instead. It's a bit easier to install. Simply download the latest .zip, extract the contents, then go to Administration » Firmware Upgrade on the router, browse for the .trx file and click Upload.

    According to this webpage, you can use the following iptables rule on your RT-N66U (once you have installed the 'Merlin' firmware above and enabled JFFS) to redirect all DNS queries to the server(s) defined on the router (e.g. OpenDNS).

    Code:
    iptables -I PREROUTING -t nat -p udp -s `nvram get lan_ipaddr`/`nvram get lan_netmask` ! -d `nvram get lan_ipaddr`/`nvram get lan_netmask` --dport 53 -j DNAT --to-destination `nvram get lan_ipaddr`
    If you decide to install the Tomato (64k) firmware in the future, it's probably a good idea to update the routers bootloader to v1.0.1.3 (if it is v1.0.1.2) to prevent it from being bricked. Details below (although I wouldn't attempt this if you are unsure of things).


  6. Thanks to Arthur from:

    Fatherof9 (2nd August 2013)

  7. #21
    cpjitservices's Avatar
    Join Date
    Jul 2010
    Location
    Hessle
    Posts
    2,478
    Thank Post
    515
    Thanked 287 Times in 263 Posts
    Rep Power
    81
    I have a pfsense box, with Dansguardian attached which does all my filtering but to be honest I only really filter things like pop-ups.

  8. #22

    seawolf's Avatar
    Join Date
    Jan 2010
    Posts
    969
    Thank Post
    12
    Thanked 283 Times in 217 Posts
    Blog Entries
    1
    Rep Power
    175
    OpenDNS is good, but only if it is set at the router level in not on the devices themselves or it can be easily overridden. OpenDNS also doesn't help at all with filtering google image searches.

    I think the best solution is to use the iBoss Home combined with OpenDNS configured as a second layer filter for the really bad stuff in case either is circumvented. The iBoss is an awesome device in the granularity of filtering and reporting. It enables you to block social media sites very granularly (view but not post to Facebook, etc,) and has clean image searching redirects to lock in safe search on any browser on any device.

    http://www.iboss.com/home_overview.html

    Of course, this does nothing to stop someone from using 3G/4G to circumvent filtering at home, school, or work. This is why some level of ISP based filtering would be a good thing.

SHARE:
+ Post New Thread
Page 2 of 2 FirstFirst 12

Similar Threads

  1. Internet filtering while behind proxy at school, and at home.....
    By tlaw in forum Internet Related/Filtering/Firewall
    Replies: 11
    Last Post: 13th July 2011, 12:32 AM
  2. BT Dial up Speed At Home.
    By tickmike in forum General Chat
    Replies: 10
    Last Post: 15th August 2007, 10:56 PM
  3. Parents Survey regarding ICT at home
    By Sylv3r in forum Virtual Learning Platforms
    Replies: 17
    Last Post: 29th October 2006, 05:35 PM
  4. Replies: 11
    Last Post: 13th October 2006, 11:26 PM
  5. Advice on Setting up a Server 2003 domain at home.
    By Kyle in forum How do you do....it?
    Replies: 6
    Last Post: 14th August 2006, 06:15 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •