• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 144
  • Last Modified:

Blocking Local network IPs from accessing a server

What is the best, and simplist way to block local network IPs from accessing a local server.  

thanks in advance

1 Solution
A software based firewall (especially a free one like Sygate http://www.majorgeeks.com/download.php?det=3356 or Tiny http://www.majorgeeks.com/download.php?det=760 ) will let you block any IP addresses you want from accessing your server is one of many solutions.

hope this helps.
route add (local server ip) mask (random fake IP) metric 1
on the computers you don't want accessing the server. This will send the request to the fake IP therefore never making it to the server.  you can even put it in a logon script
Rich RumbleSecurity SamuraiCommented:
best is relitive... but windows has the ipsec firewall filters built in that work quite well. The "good" thing about the ipsec firewall on M$ is that the necessary port's for AD are allowed to pass with out restriction. This however is not good if the firewall is facing the internet, but this has been updated and the default allowed ports can be blocked by using a key in the registry.

Ipsec Firewall howto:
Unsecured traffic http://support.microsoft.com/kb/253169/EN-US/
Exemptions removed http://support.microsoft.com/kb/810207/EN-US/

The firewall in M$ 2003 server (service pack 1 beta btw) works very well also.
2nd best answer is... put up a firewall and filter them out
> block local network IPs from accessing a local server

Best answer, if you have a server you want no one to use, unplug it.

answer three, use multiple LANs.  Users with good access separate physically from users without authorized access
DarrylBuckAuthor Commented:
Thanks for your input, I think I will go with the firewall solution, I was just seeing what other options there maybe


Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now