How to filter certain workstations or laptops from accessing Internet in WIN 2000 Server?

I have a WIN 2000 Server with ADSL through a lnksys router that my clients have access to the internet.  I want certain PC's and laptop who log unto the server as a user to not have access to the internet.  Or should I do this through the LINKSYS Router?  Any help is appreciated.
scatcomAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Jay_Jay70Connect With a Mentor Commented:
create a seperate group policy with this false proxy

User Configuration\Windows Settings\Internet Explorer Maintenance\Connection:

then stop the changes

Administrative Templates\Windows Components\Internet Explorer\Disable changing proxy settings

add this policy to your desired OU and use securitly filtering to get rid of the users you DONT want it applied to

http://www.windowsnetworking.com/articles_tutorials/Group-Policy-Security-Filtering.html
0
 
SembeeCommented:
Do you want to stop anyone who uses certain machines from accessing the internet?
Or certain users on any machines?

If anyone on certain machines then the easiest way is to reserve an IP address in DHCP and then don't set a default gateway for that machine.

If for certain users, then use a group policy to set dummy proxy settings in Internet Explorer.
Will not stop someone using firefox on their machine - if they can install it.

Otherwise you need something where access can be authenticated - a proxy of some kind. I don't think any of the Linksys routers have that capability, so it would have to be a third party product.

Simon.
0
 
scatcomAuthor Commented:
DCHP (Server right?) and don't set the default gateway to the router itself? or gateway to the ISP settings?
0
Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 
SembeeCommented:
If you operating in a domain, then the DHCP server should be a Windows 2000 machine. If you are using a router as the DHCP server then you don't have the control over the DHCP that you need.

Don't set any default gateway - so that the machines only get an IP address, subnet mask and DNS server.

Simon.
0
 
scatcomAuthor Commented:
I'll give that a try and see if it works.......
0
 
Einstine98Commented:
ISA server would be ideal for this kind of job, but i you can afford it
0
 
Jay_Jay70Commented:
if you are going to take the route of not setting a gateway, then block users manually entering one...! 99% of the time the gateway is the .1 address and it doesnt take a genius to know how to insert an address...i like the false proxy idea myself, thats what i use then block them changing it :)
0
 
scatcomAuthor Commented:
So do I block the users in the router or in the server?
0
 
Jay_Jay70Commented:
via the server with group policy
0
 
scatcomAuthor Commented:
Create group policy first and then add users to this policy?  And if so, how do I construct this policy specifically to a false proxy scheme? thanks!!
0
 
scatcomAuthor Commented:
Thanks everyone....
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.