Any home router that can block HTTPS? - Overclock.net - An Overclocking Community

Forum Jump: 

Any home router that can block HTTPS?

Reply
 
Thread Tools
post #1 of 27 (permalink) Old 10-01-2018, 03:44 AM - Thread Starter
New to Overclock.net
 
awdrifter's Avatar
 
Join Date: May 2007
Posts: 5,316
Rep: 212 (Unique: 176)
Any home router that can block HTTPS?

Are there any home router that can block HTTPS (like https://google.com)? If not, what's the cheapest commercial router that can do it? Thanks.

99.999999% of the world listens to autotuned pop singers. If you are part of the 0.000001% who listen to the future goddess of music Hatsune Miku, copy and paste this into your sig. cool.gif
Vocaloid Fanclub!

awdrifter is offline  
Sponsored Links
Advertisement
 
post #2 of 27 (permalink) Old 10-01-2018, 03:58 AM
New to Overclock.net
 
TheBDK's Avatar
 
Join Date: Feb 2013
Posts: 598
Rep: 20 (Unique: 16)
Not to my knowledge. However if you use opendns you can block from there.
TheBDK is offline  
post #3 of 27 (permalink) Old 10-01-2018, 04:35 AM
New to Overclock.net
 
farmdve's Avatar
 
Join Date: Aug 2008
Posts: 1,711
Rep: 22 (Unique: 22)
Why would you want to do that?? Most websites use https for security and some offer access only through https.

Current
(5 items)
CPU
i7-8700k
Motherboard
ASRock Z370 Extreme4
GPU
GTX 1070
RAM
Corsair
Case
Fractal XL R2
▲ hide details ▲
farmdve is offline  
Sponsored Links
Advertisement
 
post #4 of 27 (permalink) Old 10-01-2018, 06:34 AM
Rust Buckets for Days
 
axipher's Avatar
 
Join Date: Oct 2011
Location: Canada
Posts: 13,080
I think you need to give us a reason why you want to block HTTPS, you might be able to accomplish whatever your goals are in a different way.


As @farmdve said, some sites will ONLY work using HTTPS access.



Spoiler!


axipher is offline  
post #5 of 27 (permalink) Old 10-01-2018, 09:59 AM
Typo Elemental
 
Simmons572's Avatar
 
Join Date: Feb 2013
Location: Carboard box, power strip, and a 56k modem.
Posts: 3,034
Quote: Originally Posted by axipher View Post
I think you need to give us a reason why you want to block HTTPS, you might be able to accomplish whatever your goals are in a different way.


As @farmdve said, some sites will ONLY work using HTTPS access.
I am going to second this. I have a few ideas of what you may be trying to do, but each of those ideas come with a different solution. To say the least, I am definitely intrigued.

CPU
AMD Threadripper 1900x
Motherboard
Asus Prime X399-A
GPU
EVGA 1080 Classified
Hard Drive
Samsung 960 Evo
Hard Drive
Intel 750 Series 400GB U.2
Hard Drive
Samsung 850 Pro 512 GB
Hard Drive
Samsung 850 Pro 512 GB
Power Supply
Seasonic 1050w 80+ Gold
Case
Corsair Air 740
Operating System
Windows 10 Pro
CPU
i5 6600k
Motherboard
Asus Z170i Pro Gaming
GPU
Sapphire R9 Nano
RAM
Kingston FURY 16GB (2 x 8GB) DDR4-2400
Hard Drive
Samsung 950 Pro 512 GB
Power Supply
Athena AP-MFATX40 400W Flex-ATX
Cooling
be quiet! ​PURE ROCK ​SLIM
Case
Lian-Li PC-TU 100B
Operating System
Windows 10 Pro
Monitor
ViewSonic XG2401
Keyboard
MK Disco RGB TKL (KBT Brown)
Mouse
Razer Mamba TE
Mouse
Razer Firefly Cloth
Audio
Beyerdynam​ic DT 770 ​Pro 80 ohm
Audio
Antlion Audio ModMic 4 w/ Mute
Audio
Schiit Fulla 2
Other
Noctua NF-A9x14 (x2)
Other
Fractal Design FD-FAN-SSR2-92
Other
Fractal Design FD-FAN-SSR2-60 (x2)
Other
Fractal Design GP12-WT
CPU
i7 6800k
CPU
Xeon e5-1620 V3
Motherboard
EVGA Micro 2
GPU
Asus GTX 780
GPU
Sapphire Fury X
GPU
Sapphire RX 480
RAM
Kingston - FURY 8GB (2 x 4GB) DDR4-2400
RAM
ADATA - XPG Z1 8GB (2 x 4GB) DDR4-2400
Hard Drive
SanDisk - SSD PLUS 240GB
Hard Drive
Kingston - SSDNow V200
Power Supply
Corsair HX850i
Cooling
be quiet! - PURE ROCK
Case
Thermaltake Core V21
Operating System
Windows 10 Pro
▲ hide details ▲


Simmons572 is offline  
post #6 of 27 (permalink) Old 10-01-2018, 10:05 AM
Retired Staff
 
JedixJarf's Avatar
 
Join Date: Dec 2010
Location: Coruscant
Posts: 9,432
Rep: 305 (Unique: 244)
Obviously he wants to be able to sniff any packet? Not the best desicion, and i'm sure tons of stuff will break, but it's possible to do.

You can use pfsense, sophos XG home, ubiquiti to do this.


JedixJarf is offline  
post #7 of 27 (permalink) Old 10-01-2018, 01:36 PM
New to Overclock.net
 
farmdve's Avatar
 
Join Date: Aug 2008
Posts: 1,711
Rep: 22 (Unique: 22)
If sniffing is his goal, I can recommend a few ways. If he has access to the computer, install a self-signed certificate generated from mitmproxy on the target machine. To get traffic from the PC, redirect the DNS to your own, using dnschef. Of course, this has a problem, because of certificate pinning in which case the pinned website's certificate will not match the user generated one for the website, and thus the browser will alert the user that the certificates do not match.

Current
(5 items)
CPU
i7-8700k
Motherboard
ASRock Z370 Extreme4
GPU
GTX 1070
RAM
Corsair
Case
Fractal XL R2
▲ hide details ▲
farmdve is offline  
post #8 of 27 (permalink) Old 10-02-2018, 02:04 AM - Thread Starter
New to Overclock.net
 
awdrifter's Avatar
 
Join Date: May 2007
Posts: 5,316
Rep: 212 (Unique: 176)
I'm trying to block a few sites that has went HTTPS. For example, if I want to block PSN to prevent my PS4 from connecting to the Sony servers, or if I have a PC that I want to prevent it from connecting to the Microsoft servers. Thanks for the replies so far. If it's not possible then I guess I'll just have to deal with it.

99.999999% of the world listens to autotuned pop singers. If you are part of the 0.000001% who listen to the future goddess of music Hatsune Miku, copy and paste this into your sig. cool.gif
Vocaloid Fanclub!

awdrifter is offline  
post #9 of 27 (permalink) Old 10-02-2018, 10:17 AM
New to Overclock.net
 
EniGma1987's Avatar
 
Join Date: Sep 2011
Posts: 6,321
Rep: 338 (Unique: 248)
Just block the ports that Sony uses for server communication. Not sure what they are but XBox Live runs over 3074 for example. You could also block the server IPs in your firewall. Simply blocking all HTTPS is a bad idea since that is your secure web connection. You will have issues with a lot of websites including banking and purchasing things online.




Just looked up the ports:
TCP: 80, 443, 465, 993, 3478, 3479, 3480, 5223, 8080. UDP: 3478, 3479.


port 80 and 443 are regular web traffic for http and ssl connections. 465 is normally unencrypted STMP servers for email sending. Strange that Sony would be using that port for PSN. 8080 is used for HTTPS much of the time.
I would guess that all those other ports listed are the main ports used by PSN. Try blocking them and see if the network will connect still.


Last edited by EniGma1987; 10-02-2018 at 02:33 PM.
EniGma1987 is offline  
post #10 of 27 (permalink) Old 10-02-2018, 02:05 PM
New to Overclock.net
 
Cloudforever's Avatar
 
Join Date: Sep 2010
Location: Kentucky
Posts: 1,265
Rep: 60 (Unique: 46)
well, I wouldnt think you can just throw in a " Parental control " to easily block them from the little ones going to those sites at certain times of the night? That's always an easy option.

or are you wanting to get more in depth with blocking them completely?

Cloudforever is offline  
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off