asked on Web Filtering on the cheap
Hi All,
We have setup a visitor wi-fi (password enabled) at my company.
This works well. However it is an open internet connection.
Is there a cheap and easy way to add filtering. I've used open dns in the past, which used to costs around £500 per year.
Does anyone have any suggestions?
We have setup a visitor wi-fi (password enabled) at my company.
This works well. However it is an open internet connection.
Is there a cheap and easy way to add filtering. I've used open dns in the past, which used to costs around £500 per year.
Does anyone have any suggestions?
DNSMicrosoft IIS Web ServerNetworkingWeb BrowsersSecurity
Last Comment
detox1978
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
We have a dedicated ADSL connection, so just need the content filtering.
pfsense if you have spare compute power and 2 spare nics
You can use WAN2 port in a DrayTek firewall and connect it to your ADSL router then enable content filtering in the DrayTek firewall.
I'm with David here, pfsense.
pfSense may be best suited for a home office or small business network, not looking to spend a lot on a router device. The fact that you can get a lot of features (like DHCP, DNS, VPN, Firewall, etc.) in one free software is very mouth watering! However, because of trust issues with open source software, larger organizations may not feel comfortable running pfSense as their perimeter device.
Me thinks a Pi-Hole would be the answer to this need.
Another option would be Umbrella/OpenDNS at the router and DHCP with a block for UDP/TCP 53 (DNS port) for any DHCP connected clients so that they don't bypass the restrictive DNS setup.
SonicWALL has the ability to limit based on categories set up by the administrator. I think most edge devices may have that ability. It is a subscription service.
Another option would be Umbrella/OpenDNS at the router and DHCP with a block for UDP/TCP 53 (DNS port) for any DHCP connected clients so that they don't bypass the restrictive DNS setup.
SonicWALL has the ability to limit based on categories set up by the administrator. I think most edge devices may have that ability. It is a subscription service.
Pi-Hole is more an adblocker than an web content filter. It isn't supposed to be used as a web filter.
nxFilter is better than pfSense for this...
https://nxfilter.org/p3/
Just remember though, it won't be 100% foolproof, whatever you do. Any browser using DoH will bypass this.
nxFilter is better than pfSense for this...
https://nxfilter.org/p3/
Just remember though, it won't be 100% foolproof, whatever you do. Any browser using DoH will bypass this.
ASKER
Thanks for all the suggestions. we bought a cheap second hand draytek router from on ebay, which seems to do the job nicely.