I’ve been successful blocking HTTPS access to Facebook using release 2.0.RC1.
Chain: Forward
Policy: Accept
Click ADD
In the new window that pops-up enter values for;
Source IP <— IPs that are used in your LAN (or assigned to stations via DHCP)
Destination IP: 69.63.176/20
Protocol Matching: TCP
Dest. Port: 443
Action: DROP
Click on Confirm
Repeat the above process but changing the Destination IP to these other known facebook IPs;
66.220.144.0/20
69.171.224.0/20
204.15.20/22
I’m using Bridge Mode for LAN & WAN connections.