?
Solved

VPN and Internet Access Conflict

Posted on 2007-10-04
5
Medium Priority
?
286 Views
Last Modified: 2010-04-12
Dear EE members,
I have a proxy server to control end-user internet access. Currently, we have implement a VPN where
it must link to an internet site 'A' to get email. By adding the HQ company 's DNS to point to 'A' , it also
enable the end-user to access internet.

I don't want the end-user to access internet by pointing to 'A'.
I want to point to 'A' and access 'A' only.

It is very confusing..

Any guideline?

Regards,
Peter
0
Comment
Question by:peter_chong
  • 3
  • 2
5 Comments
 
LVL 33

Expert Comment

by:MikeKane
ID: 20019258
If you have a proxy server, you should be able to control the access through it with rules or filters...  

What kind of proxy are you running?  Also, if I read this correctly, you did not have a local DNS server?   You only had a dns entry when you pointed the to hq's DNS?  

0
 

Author Comment

by:peter_chong
ID: 20020209
Dear EE member,
We have wingate proxy server in one machine and a cisco router to A. Where the cisco router is a firewall and vpn purpose.
Regards,
Peter
0
 
LVL 33

Expert Comment

by:MikeKane
ID: 20025439
Wingate Proxy can be configured with a Deny all  and then an exception for the 1 host you are trying to hit.  
-or-
Remove the dns settings so that your box will not hit A anymore.  THen use a hosts file instead with the single entry for A for resolution.  

0
 

Author Comment

by:peter_chong
ID: 20026579
Dear EE members,
If I add an entry to hosts file:
should I use local ip for A site,since it is VPN
or
use internet ip for A site.
If I use internet ip for A site, then the user not authorised for internet access cannot access A.
We have about 50 users in the office, should I manually go to each pc to amend their hosts file?
Any better way?
Any suggestion and futher explaination?

Point added.
TQ.
Regards,
Peter
0
 
LVL 33

Accepted Solution

by:
MikeKane earned 1200 total points
ID: 20026768
Just utilize your wingate proxy to deny all sites except for A.  
0

Featured Post

A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Make the most of your online learning experience.
Tech spooks aren't just for those who are tech savvy, it also happens to those of us running a business. Check out the top tech spooks for business owners.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

755 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question