Blocking Specific Sites with Deny/Reject Policies
How to use deny/reject network policies to block access to specific, restricted sites.
Log into SputnikNet, then navigate to network policies overview.
Add a new deny/reject network policy.
Configure the deny/reject policy.
Here is an example policy to deny access to the website of a competitor across the street:
- Name: name your policy
- Action: select "Deny/Reject"
- Protocol: select "TCP"
- Match destination hostname: enter the domain name of the site you want to reject access to
- Is Dynamic: check the box if the IP address of the site is subject to change, and select an expiration interval
- Match Destination IP or Network/Netmask: as an alternative to a destination hostname, you can provide the IP address
- TCP or UDP Port: enter "80" (for web traffic)
Click "Add Policy" to save your settings.
Entering a deny/reject policy by IP address.
Select an authentication system's group policies.
Add the deny/reject policies to the authentication system.
Review network policies.
Apply the authentication system to captive portals.
Click on "Captive Portals" from the "CONFIG" menu, then click on the name of the captive portal you want to apply the authentication system to.
Click "Walled Garden and Authentication" from the "Captive Portal Properties" menu. Click the checkbox next to the name of the authentication system containing the content filtering policy.
Click "Update" to save settings.
Apply captive portals to Sputnik-powered devices.
Click on "Routers" from the "CONFIG" menu, click on the name of the Sputnik-powered device ("router") that you want to apply the captive portal to, then select the captive portal from the "Portal" pop-up list. Click "Save Settings" to do just that.
Scroll down to the bottom of the "Edit Settings" page. Under "Network Policies" you will see a list of policies that apply to users of that Sputnik-powered device (router).