Hi,
I have 2 sites.
Site A - Hosts Domain Controller and AD
Site B - Uses a UDM Pro and has site to site with site A (DNS for various networks set to DC IP)
I wanted to block AI sites to all the networks bar one in Site B, so I enabled content filtering and added a blocklist (openai.com, calude.ai, etc)
However this prevented being able to authenticate used in AD and join machines to Domain, I could Ping the DC fine, but something for auth was being blocked by content filter, turned it off and that started working again.
So back to blocking AI sites and Agents. I have 2 routs is guess;
App Blocking - but only chatgpt is in the app list, and I presume this is the app only and not the site?
Domain blocking - i thought this was the ticket, but it's using DNS which comes from the DC, so I'd have to block their which I cant do as their legitimate need for access for some people machines.
So i'm not sure how to go. Any recommendations.