• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Need filtered web access at work

N

NetworkDad

Diamond Member
I need to set up about 12 workstations that have filtered web access at work. I need to restrict their access to our internal LAN and 1 frequently used domain outside the LAN on the internet.

What's the easiest way to go about this? Can i set this up through internet explorer content advisor, a registry setting? I'd prefer to not to have any additional software running on the PC's.

Thanks!
 
create a hosts file of all the computer and domain names with IP addresses that you want them to have access to. Then setup their tcp/ip to use the hosts file, and remove all dns server entries in tcp/ip. now when there computer tries to go to crazysex.com, the computer will look in the hosts file, and won't find it, and therefore the user can't get to it.
 
the host file idea is good, but it is tedious if you want to make changes to it. It is also tedious to find out what website people would like to access and how.


I don;t know what kind of filtering you want, but say if you want to filter sex sites, and abusive sites, you are better off with purchasing some type of router with parental control for it, like this one from Netgear


A better solution would be to http://www.us.buy.com/retail/computers/product.asp?sku=10273013&loc=413

Of course the best solution would be to run some type of proxy server and filtering content from there. But it could be hard and pricey.

 
I love the idea of a hosts file on a 12 workstaton LAN for local browsing, but for internet connectivity, unless you have a very specific list of sites, and they do no change except in very rare circumstances, a hosts file solution is administratively speaking, very consuming.
 
Depending on the feed you have at work (like Frame-Relay), you may have a ("Real") router that will allow an Access Control List (ACL) so that the internal addresses are wide-open, but only sites on the access list can be hit on the outbound (Internet).

You could also set up a Linux box with a proxy (can be just about anything) like Squid, then limit outbound access to proxy-only.

Most ("real") firewalls will permit filtered access. and chances are you have one/are gonna get one anyway.

Replace the word "Real" with "Commercial-Grade," like Cisco, Nortel, 3com(?), ENterasys..whoever. The Home-use devices don't (usually) have the flexability of a full-blown commercial system.

FWIW

Scott
 
I might try the hosts file idea - This is a temporary solution until our IS Dept installs filtering software in about 2 months. As for routing equipment, we have that already. We have multiple DS3's, etc that come into the building, but this access has to be limited to these 12 workstations, not the other 200+ that are in the building.

Thanks for all your help and suggestions!

 
You must log in or register to reply here.

TRENDING THREADS

Back
Top