?
Solved

Restrict access to internet for some users

Posted on 2004-04-08
3
Medium Priority
?
244 Views
Last Modified: 2010-04-19
Hi there,

I am setting up a new server for a client together with an ADSL connection for about 10 desktops. My client does not trust their staff and so does not want everyone to be able to access the internet. However, the client does want everyone to have email.

I was thinking of restrivting Inet access by using a proxy such as squid and closing of all access to port 80 except for the proxy. I can then use the proxy config to allow certain machines access to the web. However, I would like to a set up where I can deny specific users regardless of the machine they are using.
Any ideas how I can do this or comments on my initial thoughts?

Cheers

Richard

0
Comment
Question by:greenanr
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 20

Accepted Solution

by:
What90 earned 1000 total points
ID: 10788837
If it's a windows network you may look at using Ms ISA server. It's a firewall/proxy which can integrate with Ms or Active DIrectory and work on rules based on users and groups.

http://www.microsoft.com/isaserver/
http://www.isaserver.org/ 
0
 

Author Comment

by:greenanr
ID: 10790404
This is a good solution (and you get the points :-) ). However, I was really looking for an alternative that doesn't cost $2K. Does anyone know of such and alternative.


Cheers

Richard
0
 

Author Comment

by:greenanr
ID: 11021545
Hi there,

To answer my own question:

I set up a Windows 2003 Server as a multihomed system. One NIC I connected to the ADSL router and the other I connected to the rest of the network. I then used Windows RRAS to filter the inbound ports to only allow email ports through.
Finally I set up Squid as a proxy and used access control lists to stop proxy access to certain users.

Job done :-)

Richard
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

So you have two Windows Servers and you have a directory/folder/files on one that you'd like to mirror to the other?  You don't really want to deal with DFS or a 3rd party solution like Doubletake. You can use Robocopy from the Windows Server 200…
Numerous times I have been asked this questions that what is it that makes my machine log on so slow, there have been cases where computers took 23 minute exactly after taking password and getting to the desktop. Interesting thing was the fact th…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question