Restrict access to internet for some users

Hi there,

I am setting up a new server for a client together with an ADSL connection for about 10 desktops. My client does not trust their staff and so does not want everyone to be able to access the internet. However, the client does want everyone to have email.

I was thinking of restrivting Inet access by using a proxy such as squid and closing of all access to port 80 except for the proxy. I can then use the proxy config to allow certain machines access to the web. However, I would like to a set up where I can deny specific users regardless of the machine they are using.
Any ideas how I can do this or comments on my initial thoughts?

Cheers

Richard

greenanrAsked:
Who is Participating?
 
What90Connect With a Mentor Commented:
If it's a windows network you may look at using Ms ISA server. It's a firewall/proxy which can integrate with Ms or Active DIrectory and work on rules based on users and groups.

http://www.microsoft.com/isaserver/
http://www.isaserver.org/ 
0
 
greenanrAuthor Commented:
This is a good solution (and you get the points :-) ). However, I was really looking for an alternative that doesn't cost $2K. Does anyone know of such and alternative.


Cheers

Richard
0
 
greenanrAuthor Commented:
Hi there,

To answer my own question:

I set up a Windows 2003 Server as a multihomed system. One NIC I connected to the ADSL router and the other I connected to the rest of the network. I then used Windows RRAS to filter the inbound ports to only allow email ports through.
Finally I set up Squid as a proxy and used access control lists to stop proxy access to certain users.

Job done :-)

Richard
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.