I am in the process of setting up a small network for my company. The internet connection for this network is a 7.1 down DSL connection with a Verizon/Westell modem/router.
the main purpose of this network is to provide a small lab enviornment (12-15 pc's) for training purposes with internet access. a secondary purpose is to allow outside or non-company employed users access to the internet without having to put them on the domain for our corporate network, which is the only way to get internet access in our domain.
I am required to use internet content filtering for all computers that will access this DSL connection.
Currently, I am using a service called OpenDNS. I set up primay and secondary DNS entries in the router that points to the OpenDNS servers and I can set the filtering how I see fit through their web interface. It works beautifully except for a couple problems.
OpenDNS works off of our IP address, which happens to be dynamic. So, when our IP changes, OpenDNS no longer works. I should say used to until I set up a program called DyDNS that updates our IP with OpenDNS whenever it changes.
The big problem is that when our ip gets renewed, it flushes the DNS settings I specify in the router, so our content filtering goes bye bye, until i set it back up again, and then it lasts until the next time our ip is renewed. I talked to Verizon and they basically said, the only way around this is to pay another 100 bucks a month for a static IP.
I have set up a domain for the lab pc's, so i can pretty much control these through group policy. In a complete domain environment there wouldnt be much of an issue. the issue is with the non-domain pc's that will be on this network. I dont want to be in the same boat as i was to begin with having to put these pc's on the domain in order to let them have access to the internet.
So what i need is some software I can use to build a proxy server that i can put between the router and the network. Since i cant use group policy to configure users browsers to point to the proxy server, I'm wondering if there is anything i can use that is affordable that will work well with the limitations i laid out.
Preferably I would like this to work without having to physically go to every pc that will access this network, because it would be a pain but also would interfere with the browser configurations of our users that will use both of our networks as well as users that belong to domains that arent ours.
I have DHCP running on the DC for this small network, so if i need a wpad entry or whatever, i can do that.
Any recommendations?
Thanks in advance.
the main purpose of this network is to provide a small lab enviornment (12-15 pc's) for training purposes with internet access. a secondary purpose is to allow outside or non-company employed users access to the internet without having to put them on the domain for our corporate network, which is the only way to get internet access in our domain.
I am required to use internet content filtering for all computers that will access this DSL connection.
Currently, I am using a service called OpenDNS. I set up primay and secondary DNS entries in the router that points to the OpenDNS servers and I can set the filtering how I see fit through their web interface. It works beautifully except for a couple problems.
OpenDNS works off of our IP address, which happens to be dynamic. So, when our IP changes, OpenDNS no longer works. I should say used to until I set up a program called DyDNS that updates our IP with OpenDNS whenever it changes.
The big problem is that when our ip gets renewed, it flushes the DNS settings I specify in the router, so our content filtering goes bye bye, until i set it back up again, and then it lasts until the next time our ip is renewed. I talked to Verizon and they basically said, the only way around this is to pay another 100 bucks a month for a static IP.
I have set up a domain for the lab pc's, so i can pretty much control these through group policy. In a complete domain environment there wouldnt be much of an issue. the issue is with the non-domain pc's that will be on this network. I dont want to be in the same boat as i was to begin with having to put these pc's on the domain in order to let them have access to the internet.
So what i need is some software I can use to build a proxy server that i can put between the router and the network. Since i cant use group policy to configure users browsers to point to the proxy server, I'm wondering if there is anything i can use that is affordable that will work well with the limitations i laid out.
Preferably I would like this to work without having to physically go to every pc that will access this network, because it would be a pain but also would interfere with the browser configurations of our users that will use both of our networks as well as users that belong to domains that arent ours.
I have DHCP running on the DC for this small network, so if i need a wpad entry or whatever, i can do that.
Any recommendations?
Thanks in advance.
Facebook
Twitter