Firewall to block / drop website or IPs

Hello,

I would like to know two things.

First, is it possible to use Qubes OS configuration to block certain website when you are using a Wireguard or other VPN setup like this one : Wireguard VPN setup ?

For example, block all incoming traffic from Wikipedia that pass through the VPN ?

Second, is it possible to just block / drop all incoming traffic from a particular website by blocking it’s IP address but allowing all other website ? So basically something different from the “Allow all outgoing connections” / “Limit outgoing connections to …” ?

Thank you for your time :slight_smile:

hi,

if you want to restrict which websites could be reached through the VPN, the best would be to force the use of a http proxy with a domain whitelist. This can’t be bypassed.

You can use qvm-firewall command in dom0 terminal to configure Qubes OS firewall more flexibly:
qvm-firewall – Manage VM outbound firewall — Qubes Admin client v4.3.5-0-g30d7547-dirty documentation