How to use the “punish group” feature in WFilter NG firewall?

Leave a reply

This article will introduce the “punish group” feature of WFilter NG firewall. The punish group is a virtual group, which enables you to:

  • 1. Set punish policies to punished clients. For example: disallow entertainment sites, rate limits to 20K.
  • 2. Add an user to the “punish group” for a limited time.
  • 3. Add multiple users to the “punish group” by WFilter extensions.

Set policies to the punish group

You can set policies to the punish group in “Access Policy” and “Bandwidth”.

“Punish group” is a virtual group. You also can define your own virual group for various temp rules.

Introduction to WFilter NGF’s bandwidth optimize features.

Leave a reply

You will come to the following solutions when your internet bandwidth is insufficient:

Actullay, these three solutions have disadvantages:

  • 1. Without access control, using multiple broadband connections can not bring better experience. It because downloading and streaming can easily consume most of your bandwidth.
  • 2. “Application blocking” can save your bandwidth. However, users experience are impacted. Users will complain about no streaming or downloading.
  • 3. Rate limiting does not optimize your bandwidth. Users will still complain about slow internet speed.

WFilter NG firewall brings a total solution for bandwidth optimization.

1. Powerful access control policy

With “Access Policy” modules, you can block p2p downloading, online streaming, streaming websites. Please check: Access Policy

2. Multi-WAN load balancing and routing

In case you have multiple broadband connections, WFilter NGF’s “Multi-WAN” module can help you to:

  • 1. Load balancing on multiple broadband connections.
  • 2. Setup routing policies. For example, a). business servers are routed to a dedicated connection, b). video sites are routed to another connection.

For more details, please check: Muti-WAN

3. Bandwidth priority

With the “Priority” module, traffic with higher priority goes first. For example, you can set business servers traffic to the highest priority. So even the network is extremly busy, servers bandwidth won’t be influenced.

When installed, there are default rules: email > web > p2p and streaming. You also can customize your own rules.

For more details, please check: bandwidth priority

4. Bandwidth shaper

This module is for you to set bandwidth rate for clients. You can set the rate to ip ranges, user group or department.

Each group have a “maximum bandwidth rate” and “minimum bandwidth rate”. The minimum rate ensures the clients to have this bandwidth rate even the line is busy.

For more details, please check: bandwidth shaper

Try WFilter NGF now: WFilter NG firewall

WFilter NG Firewall, a linux based next generation firewall and routerOS, is released.

Leave a reply

After two years of development, we’re now pleased to announce a new product: “WFilter NG Firewall”, a linux based next generation firewall and routerOS.

WFilter NG Firewall is a routerOS system, which can only be installed in a x86 pc by now. It integrates most features of “WFilter Enterprise”, together with several new features “bandwidth optimizer”, “Multi-WAN”, “user authentication”, “VPN” and others.

WFilter ROS brings you powerful live connection monitoring and access control. Features highlights:

  1. Live connection monitoring and control: you can kill live connections, or add user to the punish group.
  2. URL database supports up to 60+ web categories
  3. Set internet access policy by network, ip address, mac address or username.
  4. Monitor MAC addresses of clients in subnet. Please check: MAC Detector
  5. IP-MAC binding in multi-segments networks. Please check: IP-MAC Binding
  6. Smart bandwidth optimizer and shaper. Please check: Bandwidth Optimizer

Both “enterprise license” or “free license” are supported. The free license is for life-time and has no users limit.

You may download WFilter ROS at: http://www.wfilterngf.com

How to scan proxy servers in local network?

Leave a reply

The “Proxy Scanner” plugin in WFilter is a additional function that you can scan proxy servers in local network. And this article will guide you to use the plugin in WFilter.

1. Download “Proxy Scanner” in “System Settings-Plugins”.

2. Scan proxy servers.

2.1 Scan proxy servers by “Local Subnet Computers”.

2.2 Scan proxy servers by “IP Address Range”.

How to limit bandwidth in WFilter 4.1?

Leave a reply

In the latest version of WFilter 4.1(216), you can limit bandwidth in pass-through mode. And in this artical I will show you how to config in WFilter 4.1.

1.Select pass-through mode in “System Settings-Monitoring Settings”

2.Install WFilter IMNPTF driver, please refer How to install WFilter IMNPTF driver?

3.Check driver was installed successfully in “System Settings->Check Settings”

4.New a blocking level in “Policy Settings->Blocking Levels”

5.Apply this blocking level to computer in “Policy Settings->User-device List”

6.Check result

How to uninstall WFilter?

Leave a reply

This tutorial will demonstrator you the steps to uninstall WFilter.

1. Click the “Uninstall WFilter” shortcut

Click the “Uninstall WFilter” shortcut in windows programs list.

2. Confirm un-installation

3. Un-installation Success.

Wait until end of the un-installation.

How to block “Online Games” in WFilter 4.1?

Leave a reply

This article introduce you to block “Online Games” in WFilter 4.1 .

1. New a blocking level in “Policy Settings->Blocking Levels”, enable ‘Block webpages by categories’ and click ‘New’:

2. Edit Webpage Category Policy :

3. Apply this blocking level to computer:

4. Check result(e.g http://www.4399.com):

And you can check blocking record in ‘Current Online-Realtime Blocking’.

How to block “Proxy Tunneling” software in WFilter 4.1?

Leave a reply

This article introduce you to block “Proxy Tunneling” software in WFilter 4.1 . Tor is a popular Proxy Tunneling software, and I will guide you to block Tor.

Step 1. New a blocking level in “Policy Settings->Blocking Levels”, click “Edit” in Applications tab:

Step 2. Deny tor protocol and save setting:

Step 3. Apply this blocking level to computer:

Step 4. Open tor then it can’t connect to the server.

Step 5. You can see blocking records in “Current Online->Real-time Blocking”:

How to block snapchat in network?

Leave a reply

Snapcaht is a popular chat software, this article will guide you to block snapchat in WFilter 4.1 .

Step 1. New a blocking level in “Policy Settings->Blocking Levels”, click “Edit” in Applications tab:

Step 2. Deny snapchat protocol and save setting:

Step 3. Apply this blocking level to computer:

Step 4. Visit snapchat website and check result:


Step 5. You can see blocking records in “Current Online->Real-time Blocking”:

How to block video by protocols in WFilter 4.1?

Leave a reply

WFilter 4.1 has it’s own protocols library, so you can block protocols to block video website and client.

Step 1. New a blocking level in “Policy Settings->Blocking Levels”, then click “Edit” in Applications tab:

Step 2. Deny all protocols in Streaming category:

Step 3. Apply this blocking level to computer:

Step 4. Visit video website and check result(Youtube client also be blocked):

Step 5. You can see blocking records in “Current Online->Real-time Blocking”: