Control Web Access by User Name

Posted on 2006-11-07
Medium Priority
Last Modified: 2010-04-18
I need to be able to control who accesses the web by network user name. I specifically want to block out all web access for certain people (or a group would work too) but I still need to be able to give them email (pop3) access.

Server is windows 2003 Server.

Any ideas?
Question by:bazianm
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2

Expert Comment

ID: 17889241
Are you running IIS, apache, or other to host your site???  and is it only domain users (internally) who you want to block and is it a public or intranet site?  Need a little more info.

Author Comment

ID: 17889401
I want to be able to determine which users on my network can get outside the network to browse the web. Most of the users should not have the ability to bring up ANY INTERNET web sites (as opposed to our local intranet which is running Apache on Win2k3 server).

The users who cannot get to the web do need to be able to get and send email using pop3 so I cannot block their connections entirely. Just web access.

Expert Comment

ID: 17889597
How do they access it at the moment? Direct connection from their PCs?

If you want to restrict by username, you'll need to put in place some form of proxy which only allows specified users to access external websites, and then only allow access from that proxy through your firewall.
Get real performance insights from real users

Key features:
- Total Pages Views and Load times
- Top Pages Viewed and Load Times
- Real Time Site Page Build Performance
- Users’ Browser and Platform Performance
- Geographic User Breakdown
- And more


Author Comment

ID: 17889700
Right now they go right out. I do not have a proxy server or a firewall (other than the router firewall).

Any ideas which proxy server will do the trick? And then what do I do... restrict port 80 only to the computer running the proxy server at the router level?

Accepted Solution

trippleO7 earned 500 total points
ID: 17889791
Squid Proxy is a very popular one.  http://www.squid-cache.org

Otherwise I've installed IPCop to do this.  http://ipcop.org

Expert Comment

ID: 17889808
You will need to restrict external access purely to the proxy on ports 80 and 443 as a minimum. Ideally you block all access from the client PCs and only open up what they actually need e.g. POP3.

As far as proxy software goes, I've use MS ISA server quite successfully, but that'll probably cost you money. If you aren't afraid to get your hands dirty I believe there is a Windows port of Squid which is free, although I've not looked at it for a few years.

Featured Post

Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The HP utility "HP Lights-Out Online Configuration Utility for Windows Server 2003/2008" could be of great use when it comes to remotely configure a HP servers ILO WITHOUT rebooting the server. We would only need to create and run scripts using thi…
This may not be a text book method to resolve VSS backup issues but it seemed to have worked on few of the Windows 2003 servers we had issues while performing a Volume Shadow Copy backup. If you have issues while performing a shadow copy backup usin…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question