Routers that can restrict access to all but a single domain?

eXor · 9 May 2007 at 23:24

Let's say I have a computer that will only ever access acme.com

1. I want to be able to set the default outbound policy to deny all connections and the default inbound policy to allow established / related connections.

2. I want to be able to set an outbound rule to allow access to my ISP's DNS servers. ( numeric ip address )

3. I want to be able to set an outbound rule to restrict access by domain instead of by port ( might be non standard ) or by numeric ip address ( might change frequently).

4. A single rule containing the domain name acme.com should allow access to any subdomain under it e.g. roadrunner.acme.com ( implied wildcard )

5. I want to be able to save the rules as a profile.

Which ADSL routers for sale on OcUK satisfy the above criteria? I'm only interested in a wired connection so any wireless router mentioned must have the ability to completely disable the wireless part, preferably by a physical act such as yanking a plug or moving a jumper.

A Linux PC with iptables would satisfy the above but it would be much bigger, much louder and more power hungry than a dedicated router.

dangermouse · 10 May 2007 at 10:19

eXor said:
A Linux PC with iptables would satisfy the above but it would be much bigger, much louder and more power hungry than a dedicated router.

Not if you use something like a mini-itx machine.

tolien · 10 May 2007 at 12:08

Third party firmware (or maybe the default firmware, I haven't used it in long enough) on a Linksys WRT54GL will do URL filtering.

Tui · 10 May 2007 at 22:57

I think you'll be hard pushed to find any "home" broadband routers that support access based on destination domain.

Note that this doesn't always work since reverse DNS entries for an IP address given for the system you're connecting to, may have a different domain or not exist at all!