Solved

Restrict access to internet for some users

Posted on 2004-04-08
3
228 Views
Last Modified: 2010-04-19
Hi there,

I am setting up a new server for a client together with an ADSL connection for about 10 desktops. My client does not trust their staff and so does not want everyone to be able to access the internet. However, the client does want everyone to have email.

I was thinking of restrivting Inet access by using a proxy such as squid and closing of all access to port 80 except for the proxy. I can then use the proxy config to allow certain machines access to the web. However, I would like to a set up where I can deny specific users regardless of the machine they are using.
Any ideas how I can do this or comments on my initial thoughts?

Cheers

Richard

0
Comment
Question by:greenanr
  • 2
3 Comments
 
LVL 20

Accepted Solution

by:
What90 earned 250 total points
ID: 10788837
If it's a windows network you may look at using Ms ISA server. It's a firewall/proxy which can integrate with Ms or Active DIrectory and work on rules based on users and groups.

http://www.microsoft.com/isaserver/
http://www.isaserver.org/
0
 

Author Comment

by:greenanr
ID: 10790404
This is a good solution (and you get the points :-) ). However, I was really looking for an alternative that doesn't cost $2K. Does anyone know of such and alternative.


Cheers

Richard
0
 

Author Comment

by:greenanr
ID: 11021545
Hi there,

To answer my own question:

I set up a Windows 2003 Server as a multihomed system. One NIC I connected to the ADSL router and the other I connected to the rest of the network. I then used Windows RRAS to filter the inbound ports to only allow email ports through.
Finally I set up Squid as a proxy and used access control lists to stop proxy access to certain users.

Job done :-)

Richard
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Join & Write a Comment

Numerous times I have been asked this questions that what is it that makes my machine log on so slow, there have been cases where computers took 23 minute exactly after taking password and getting to the desktop. Interesting thing was the fact th…
Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now