On Thu, Oct 6, 2011 at 6:31 PM, rmariya sagaya asirvatham <asir.li...@gmail.com> wrote: > Hi thank you, > > if i block 443 ports through iptables it blocks all https sites(our office > site also https site,) > > we are only want to block some site which have https like facebook > ,gmail........
Is your gateway the local dns resolver for your network? If not, you can do that redirecting all dns requests going out to the gateway's resolver itself using iptables. Then, in the etc/hosts file of the gateway, you can resolve gmail to any address you want locally that will serve out the error page saying "gmail not allowed" etc. -- Mohan Sundaram _______________________________________________ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc