Solved

Restrict access to internet for some users

Posted on 2004-04-08
3
242 Views
Last Modified: 2010-04-19
Hi there,

I am setting up a new server for a client together with an ADSL connection for about 10 desktops. My client does not trust their staff and so does not want everyone to be able to access the internet. However, the client does want everyone to have email.

I was thinking of restrivting Inet access by using a proxy such as squid and closing of all access to port 80 except for the proxy. I can then use the proxy config to allow certain machines access to the web. However, I would like to a set up where I can deny specific users regardless of the machine they are using.
Any ideas how I can do this or comments on my initial thoughts?

Cheers

Richard

0
Comment
Question by:greenanr
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 20

Accepted Solution

by:
What90 earned 250 total points
ID: 10788837
If it's a windows network you may look at using Ms ISA server. It's a firewall/proxy which can integrate with Ms or Active DIrectory and work on rules based on users and groups.

http://www.microsoft.com/isaserver/
http://www.isaserver.org/ 
0
 

Author Comment

by:greenanr
ID: 10790404
This is a good solution (and you get the points :-) ). However, I was really looking for an alternative that doesn't cost $2K. Does anyone know of such and alternative.


Cheers

Richard
0
 

Author Comment

by:greenanr
ID: 11021545
Hi there,

To answer my own question:

I set up a Windows 2003 Server as a multihomed system. One NIC I connected to the ADSL router and the other I connected to the rest of the network. I then used Windows RRAS to filter the inbound ports to only allow email ports through.
Finally I set up Squid as a proxy and used access control lists to stop proxy access to certain users.

Job done :-)

Richard
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Organizations create, modify, and maintain huge amounts of data to help their businesses earn money and generally function.  Typically every network user within an organization has a bit of disk space to store in process items and personal files.   …
This may not be a text book method to resolve VSS backup issues but it seemed to have worked on few of the Windows 2003 servers we had issues while performing a Volume Shadow Copy backup. If you have issues while performing a shadow copy backup usin…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
If you’ve ever visited a web page and noticed a cool font that you really liked the look of, but couldn’t figure out which font it was so that you could use it for your own work, then this video is for you! In this Micro Tutorial, you'll learn yo…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question