I am doing a networking job for a school and they need CIPA compliance, but all of the devices are ios/chrome tablets and a lot of BYOD devices we do not have access to. So installing a certificate would be impossible.
The school also has a lot of guests, sometimes up to 2,000 a week. We can't rely on DNS blocking because DOH makes that hard. If I block all HTTPS traffic to cloudflare 30% of the internet would stop working. Best I can do is set HTTPS traffic to 1.1.1.1 and 1.0.0.1 to redirect to the local firewall DNS.
I'm not really a fan of a lot of these sophos or other firewalls. I prefer my PFSense, so I would rather have a web-based service. Does anything exist?
No comments:
Post a Comment