Solved

Need FIREWALLL taht will block specific websites on a particuar computer within a network

Posted on 2007-04-06
1
144 Views
Last Modified: 2010-04-20
I work a a school district connected with 2000+ computers.  Most "bad" websites are filtered.  But is there a firewall program that allows you to specify further sites that should be blocked?   The issue, of course, is that this has to work within a network as opposed to an individual home pc.
0
Comment
Question by:ralphwalkerdj
1 Comment
 
LVL 28

Accepted Solution

by:
batry_boy earned 500 total points
ID: 18868133
There are a couple of ways to do this.  The first way is free and involves identifying all the "bad" sites that you want to block by their IP addresses.  Then, you would configure your firewall to block outbound access to those IP addresses.  The pro to this method is the cost...free!  The con to this method is that it is administratively intensive.  The network administrator has to constantly check for bad sites, figure out the IP addresses associated with those sites and then modify the outbound ACL to block them.

The second way to do this is with content filtering software such as Websense or SurfControl.  I have personally used Websense and it is one of the best content filters on the market.  You have to pay for the software plus an annual subscription that entitles you to download the category database which is the brains behind the software.  A team of people at Websense constantly surf the Internet with the purpose of categorizing web sites such that Websense customers can filter based on category.  For instance, you can block all sites that are categorized as adult sites, shopping sites, violence/racist sites, and allow sports sites, IT related sites or anything else.  It can integrate with Active Directory as well such that you can filter based on user ID rather than a global policy that blocks the same stuff for everyone.  For instance, the CEO of a company can be allowed unrestricted Internet access, while the Engineering department only has access to business related websites.  The beauty of this type of filtering in a large environement is that the filtering policy follows the user and is not hard coded to an IP address or specific subnet.  You can check them out at http://www.websense.com.
0

Featured Post

Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question