Good day guys
Wanted to see what was best practice for the following.
So we have multiple peplinks over a dozen out in the field.
And bandwidth is always a thing.
Use wan1 for a modem, and when peplinks are back at the office, we plug into wan2 and fails over to that. So we use the local network. FYI app peplinks do link back to the office over VPN.
Now I would like to block all updates, Windows, apple, etc. Maybe by domain name not sure just yet.
But is there a way of just blocking it over Wan1. This way when they are back at the office these domains would work fine over Wan2
Thanks
Thats an easy one. Write an outbound rule enforcing those destinations to WAN2. When that isn’t possible the destination will fail.
Do you have a small list of destinations that are allowed to use WAN1? If so you can write an Allow rule for each of those, then followed by Enforce everything else to WAN2.
1 Like
To be more specific we want to block window10 and other updates along with OSX & iOS when on Wan1 (Cellular) But allow them on Wan2 (We use then when connecting locally)
After some more research it seems update address are more domains then IP’s
What would be the best way of going about this?? Also can you add a bunch of domains to one filder to say I label one of them windows can I put say 10 doamins in that one ?
Thanks again