Differences

This shows you the differences between two versions of the page.

--- restrict-edit [2024/10/10 16:29] – [Editing Access Restriction Rules] -Condense hogwild
+++ restrict-edit [2025/09/15 15:16] (current) – [Access Restriction] hogwild
@@ Line 1: / Line 1: @@
 ====== Access Restriction ======
-The Access Restriction menu contains functions that allow you to block:
+The Access Restriction menu contains functions that let you block:
  \\
@@ Line 9: / Line 9: @@
   * WiFi access to the network.
- \\ Access Restriction **rules only apply to HTTP (unencrypted) connections**. As a result, this function is somewhat obsolete in terms of blocking Internet content.
+ \\ Access Restriction **rules only apply to HTTP (unencrypted) connections**. However, almost all web connections now use HTTPS (secure HTTP). As a result, this function is somewhat obsolete in terms of its ability to block Internet content.
 Restrictions are done based on rules and a schedule.
-Access Restriction only blocks traffic routed outbound to the Internet. It **cannot** restrict access between (switched) LAN clients. It also cannot block traffic when the device is used as a wireless bridge. For such scenarios, see the HOWTOs entitled: [[wireless_filtering|Wireless MAC filtering via script/scheduler]] and [[device_filtering|Block devices via script/scheduler]].
+Access Restriction only blocks traffic routed outbound to the Internet. It **cannot** restrict access between (switched) LAN clients. It also cannot block traffic when the device is used as a wireless bridge. For such scenarios, see the HOWTOs: [[wireless_filtering|Wireless MAC filtering via script/scheduler]] and [[device_filtering|Block devices via script/scheduler]].
  \\
 Rules can be customized to block:
+ \\
   * Only certain sources
   * Only certain destinations
   * Only certain ports
-  * Only certain protocols, or applications
+  * Only certain protocols or applications
   * Only certain HTTP activity
   * Combinations of the above
@@ Line 28: / Line 30: @@
  \\
-You can edit rules in the Web interface, and through scripts. See this HOWTO: [[access_restrictions|Scripting Access Restrictions]].
+Rules can be edited in the Web interface, and through scripts.
+See this HOWTO: [[access_restrictions|Scripting Access Restrictions]].
 ===== Access Restriction Overview =====
-The table in this section displays all saved rules, both active and inactive.
+The table here displays all saved rules, both active and inactive.
-All rules are listed here. However, adding/editing any rules forwards you to another menu where you edit the rules.
+All rules are listed here. However, adding/editing rules forwards you to another menu where you edit them.
-\\  {{:access_restriction_overview_cropped.png?775}}
+ \\ {{::misc-access_restrictions-access_restriction_overview-default-2025.3.png?799}}\\
@@ Line 48: / Line 52: @@
  \\
-  * To delete an existing rule, click on it on the Overview page, \\ then in Rule Editing, click **Delete**.
+  * To delete an existing rule, click on it on the Overview menu, \\ then in Rule Editing, click **Delete**.
-  * To **Edit **an existing rule, click on it on the Overview page, \\ make the changes and click Save.
+  * To **Edit **an existing rule, click on it on the Overview menu, \\ make the changes and click Save.
-  * To **Add** a new rule, click the //Add//  button on the Overview page, \\ configure the changes and click Save.
+  * To **Add** a new rule, click the //Add//  button on the Overview menu, \\ configure the changes and click Save.
   * On the Rule Editing page, sequential rule numbers will display \\ at the top left (For example: ID: 01)
-  * These numbers will increment by 1 for each new rule you create.\\
+  * These numbers will increment by 1 for each new rule you create.
-\\  {{::access_restriction_editing_cropped.png?700x593}}
+ \\
+ \\ {{::misc-access_restrictions-2025.3.png?800}}
+\\
  \\
-\\ **Enabled:**  Checking this enables this rule.
+\\ **Enabled:** checking this enables this rule.
  \\
-**Description:**  Here, you enter a name for this rule.
+**Description:** here, you enter a name for this rule.
  \\
-**Schedule:**  Here, you configure the schedule settings for this rule.
+**Schedule:** here, configure the schedule settings for this rule.
-  * All Day - Checking this applies the rule for the entire day \\ (for all days selected in the Day section). Enabling this makes the \\ Time options disappear.
+ \\
-  * Every Day - Checking this applies the rule every day. \\ Enabling this makes the Days options disappear.
-  * Time - Here, set the start time and end time when this rule will be applied.
+  * All Day - checking this applies the rule for the entire day \\ (for all days selected in the Day section). Enabling this  \\ makes the Time options disappear.
-  * Days - Here, set the Days on which this rule will be applied.
+  * Every Day - checking this applies the rule every day. \\ Enabling this makes the Days options disappear.
+  * Time - here, set the start time/end time the rule will be applied.
+  * Days - here, set the Days on which this rule will be applied.
  \\ **Type:**
-  * Normal Access Restriction - Sets the rule to include all options \\ set below the "Disable Wireless" option.
+  * Normal Access Restriction - sets the rule to include all  \\ options set below the "Disable Wireless" option.
-  * Disable Wireless - This rule will disable all WiFi interfaces on the router.
+  * Disable Wireless - this rule will disable all router WiFi interfaces.
 \\ **Applies To:**
-  * All Computers/Devices - This rule will apply to all network clients.
+  * All Computers/Devices - this rule will apply to all network clients.
-  * The Following... - This rule will apply to only the specified network clients. \\ Add clients by entering their MAC or IP address in the MAC/IP Address field, \\ then clicking //Add//.  Clients must be added one at a time.
+  * The Following... - the rule will apply to only the specified network clients.\\ Add clients by entering their MAC or IP address in the MAC/IP Address field, \\ then clicking //Add//.  Clients must be added one at a time.
-  * All Except... - This rule will apply to all network clients except the one specified. \\ Think of this as somewhat similar to a client whitelist. \\ Add clients by entering their MAC or IP address in the MAC/IP \\ Address box, then clicking //Add//.  Clients must be added one at a time.
+  * All Except... - the rule will apply to all network clients except the one specified.\\ Think of this as similar to a client whitelist. \\ Add clients by entering their MAC or IP address in the MAC/IP \\ Address box, then clicking //Add//.  Clients must be added one at a time.
 \\ **Blocked Resources:**
-  * Block All Internet Access - Bblocks all Internet access to the selected clients.
+  * Block All Internet Access - blocks all Internet access to the selected clients.
 \\ **Port / Application:**
@@ Line 92: / Line 102: @@
 More than one rule can be configured, click the //Add// button to add a rule.
-  * Protocol - Choose a protocol to block. Choosing a protocol \\ with fixed ports will grey out the port field.
+ \\
-  * Port - Select a source port/destination port. Then, enter the \\ port number in the next box. \\ This may be greyed out if you chose a fixed protocol in the Protocol field.
-  * Application - Select which application to block.
+  * Protocol - choose a protocol to block. Choosing a  \\ protocol with fixed ports will grey out the port field.
-  * Address - Select source and/or destination IP address, \\ then enter the IP address in the next field.
+  * Port - select a source port/destination port.  \\ Then, enter the port number in the next box. \\ This may be greyed out if you chose a fixed protocol \\ in the Protocol field.
+  * Application - select which application to block.
+  * Address - select source and/or destination IP address, \\ then enter the IP address in the next field.
+\\  \\
-\\ **HTTP Request:**
+**HTTP Request:**
-In this field, enter the text which to have the Access Restriction in this rule applied to it.
+In this field, enter the text on which the Access Restrictions in this rule will be applied.
  \\
@@ Line 123: / Line 137: @@
 This function will block downloads of certain file types, including:
-  * ActiveX - This will block Windows controls (which usually have \\ an.ocx or .cab file ending).
+  * ActiveX - this will block Windows controls (which usually have \\ an.ocx or .cab file ending).
-  * Flash (swf) - This option will block Flash .swf files.
+  * Flash (swf) - this option will block Flash .swf files.
-  * Java (class, jar) - This option blocks Java (usually class or .jar) files.
+  * Java (class, jar) - this option blocks Java (usually class or .jar) files.
 \\  \\
-**Delete:**  Deletes the Access Restriction rule displayed on the screen.
+**Delete:**  deletes the Access Restriction rule displayed on the screen.
  \\
-**Save:**  Saves the current rule displayed on the screen.
+**Save:**  saves the current rule displayed on the screen.
  \\
-**Cancel:**  Cancels the current rule change(s)/creation, returns you to Access Restriction Overview.  \\   \\   \\
+**Cancel:**  cancels the current rule change(s)/creation, returns you to Access Restriction Overview.  \\   \\  \\   \\  \\

FreshTomato Wiki

User Tools

Site Tools

Differences

Page Tools