This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Block .zip TLD with UTM9

What is the best way to block all traffic to .zip TLD via UTM9? Normally I would use web filter profile with regex, but that isn't working. I've already blocked via intune where applicable, but that doesn't cover all devices.



This thread was automatically locked due to age.
  • Top level domain blocking is not possible as far as I know in UTM, but what you can do for this is create a new Network Definition, make the type a 'Host'.

    For the IP, use something like 240.254.254.254

    Under the DNS settings for that host, just use 'zip' (without apostrophes)

    Under Additional Hostnames put in 'top' (without apostrophes).

    Add that new host, then create a rule to drop all outbound traffic to that host.

    Edit: Add that rule to the top of your rules so it's applied first.

    OPNSense 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz
    16GB Memory | 500GB SSD HDD | ATT Fiber 1GB
    (Former Sophos UTM Veteran, Former XG Rookie)

  • That worked, thank you.

  • Under Additional Hostnames put in 'top' (without apostrophes).

    Why is this line needed?