How can I filter domain access in the firewall?
My goal: Block traffic going to and coming from a named domain.
If I'm working with a regular border firewall it is easy to write rules to do this, but I don't see a way to do it on a Mac using the built-in firewall.
My current solution for the outbound side is to run a local DNS server that "resolves" any blacklisted domains to a dead-end address. This takes care of any outbound ad requests, etc., but does nothing to help me filter incoming content.
Short of replacing the built-in FW with something of higher functionality, how do other people do this?