Solved

Need FIREWALLL taht will block specific websites on a particuar computer within a network

Posted on 2007-04-06
1
145 Views
Last Modified: 2010-04-20
I work a a school district connected with 2000+ computers.  Most "bad" websites are filtered.  But is there a firewall program that allows you to specify further sites that should be blocked?   The issue, of course, is that this has to work within a network as opposed to an individual home pc.
0
Comment
Question by:ralphwalkerdj
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 28

Accepted Solution

by:
batry_boy earned 500 total points
ID: 18868133
There are a couple of ways to do this.  The first way is free and involves identifying all the "bad" sites that you want to block by their IP addresses.  Then, you would configure your firewall to block outbound access to those IP addresses.  The pro to this method is the cost...free!  The con to this method is that it is administratively intensive.  The network administrator has to constantly check for bad sites, figure out the IP addresses associated with those sites and then modify the outbound ACL to block them.

The second way to do this is with content filtering software such as Websense or SurfControl.  I have personally used Websense and it is one of the best content filters on the market.  You have to pay for the software plus an annual subscription that entitles you to download the category database which is the brains behind the software.  A team of people at Websense constantly surf the Internet with the purpose of categorizing web sites such that Websense customers can filter based on category.  For instance, you can block all sites that are categorized as adult sites, shopping sites, violence/racist sites, and allow sports sites, IT related sites or anything else.  It can integrate with Active Directory as well such that you can filter based on user ID rather than a global policy that blocks the same stuff for everyone.  For instance, the CEO of a company can be allowed unrestricted Internet access, while the Engineering department only has access to business related websites.  The beauty of this type of filtering in a large environement is that the filtering policy follows the user and is not hard coded to an IP address or specific subnet.  You can check them out at http://www.websense.com.
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Most ColdFusion developers get confused between the CFSet, Duplicate, and Structcopy methods of copying a Structure, especially which one to use when. This Article will explain the differences in the approaches with examples; therefore, after readin…
Periodically we have to update or add SSL certificates for customers. Depending upon your hosting plan you may be responsible for the installation and/or key generation. In the wake of Heartbleed many sites were forced to re-key. We will concen…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question