Blocking https website

hi ,

         we have blocked www.facebook.com in our firewall, but still people can access via https://facebook.com. since we are accessing some secured websites of banks , we cannot block https traffic in entire company. so how can block this link https://facebook.com
binumhaneefAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Rob MinersCommented:
how to block https://www.facebook.com/
You can do it by modifying the hosts file.

127.0.0.1      www.facebook.com
127.0.0.1      facebook.com

Note: Use tab for spacing


When this is typed into the Address Bar: https://www.facebook.com/
you will recieve this message:

This page can't be displayed

•Make sure the web address https://facebook.com is correct.
•Look for the page with your search engine.
•Refresh the page in a few minutes.
•Make sure TLS and SSL protocols are enabled. Go to Tools > Internet Options > Advanced > Settings > Security

How to copy a Host File to Multiple Computers

http://gallery.technet.microsoft.com/scriptcenter/41c2f046-aa88-426a-90ce-2514f30f66a2

ref# http://forums.overclockers.com.au/showpost.php?s=da1354119fcf242624732d8d5978222b&p=13172629&postcount=5
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Patrick BogersDatacenter platform engineer LindowsCommented:
Hi,

This is a possibility but i believe it is easier to create a zone in DNS for facebook.com and create those records there with bogus IP addresses or reroute it to a page stating "this is not allowed and your visit is logged" which you actually can do in IIS. This way you control the entire network.

I know some handy guys can replace their primairy DNS server locally (unless you block them to do this) and set DNS to 8.8.8.8 for example and still can access facebook.
0
Mohammed KhawajaManager - Infrastructure:  Information TechnologyCommented:
Two ways to do it:

1. Create DNS zone and then assign bogus IPs for www.facebook (better yet redirect them to an internal web page)
2.  Use a proxy server (for starters you could use SQUID and it is free)
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Security

From novice to tech pro — start learning today.