We are going to block the domain facebook.com via Windows DNS. A text tutorial and video guide have been posted for your viewing. You can sinkhole the domain to a null address like 127.0.0.1 however in our case we are going to send the DNS Requests to 192.168.1.58 for tracking.
- Open up Windows DNS Manager
- Right click on Forward Lookup Zones and select a “New Zone”.
- Select “Primary Zone” then click next.
- Select the option that best suits your environment, for me I just wanted to apply this to my end user domain “cloudrigs”.
- We are going to block “facebook.com”
- Click “Next”
- Click “Finish”
- Now, we are going to add 2 “A Host” entry records to cover the root domain and the subdomains for Facebook.com.
- Start by right clicking on “facebook.com” and select “New Host”
- Entry 1 – Wildcard for all subdomains of *.facebook.com
- Name: *
- IP Address: 192.168.1.58
- Click “Add Host”
- Entry 2 – Root Domain of facebook.com
- Name:
- IP Address: 192.168.1.58
- Click “Add Host”
- You will now have 2 “A Host” entries shown below
- When your users try to access facebook.com or any of the subdomains under *.facebook.com your users will now be denied and will not be able to reach this page.
