Looking for advice on network filtering

Hi,

I’ve been using a transparent proxy to block sites on a public WiFi network but I’m unable to use that anymore so I need to come up with a new solution. My current plan is to set up a dns server which will resolve all the domains I wish to block to the local host. I already have firewall rules in place to only allow Web traffic and email so users shouldn’t be able to change their dns server settings to bypass it.

I’d like to know if there are any problems with this idea that I’m not thinking of or if there are any better solutions.

Thanks

Untangle or Sophos UTM

such insight... throwing in a random name doesn't help.

instead of using a different dns server why not start with a captive portal and start from there. From there you can limit everything just for the wifi.

cisco router, & configure CBAC should do the job when you can't proxy anymore