MikroTik

hello everybody.
I will appreciate you if you help me.
I want to block all HTTP and HTTPs websites with my Mikrotik .
i mean i want all my clients be able to connect only to some special site (these special sites also contain HTTP and HTTPS websites) and they requests for other website be denied.
is anybody here to help me how can I do that?
because web proxy only works on HTTP websites and I also want to block all http & https websites except only some special ones(including HTTP and https ).
how can I do that?
thank you very much indeed

Hi, yo can add to address-list your Permited URL (without http:// or https://) an then block all http/https (except your "Permited URL")
Can separate http (port 80) and https (port 443) traffic into different rules

bro ...
Thanks a lot. it worked ...

for example for only yahoo.com we have got a lot of IPs... how can i do it ?

Most of today's website not just have many IPs, but also lots of the code on the page comes from other sits, like commercial and other stuff. So only allow the IP for a specific web site, may not give the result you want.

Why do you like to do this?

Maybe you need a dns filtering tool like pihole or try something with cisco umbrella dns filtering

Hi, yo can add to address-list your Permited URL (without http:// or https://) an then block all http/https (except your "Permited URL")

Code: Select all

/ip firewall address-list
add address=your-webpage list="Permited URL"

/ip firewall filter
add action=drop chain=forward disabled=no protocol=tcp src-address-list="!Permited URL" src-port=80,443

Can separate http (port 80) and https (port 443) traffic into different rules

It worked perfectly fine for my portable cleaner review site.