Michaelgoff79
asked on
isolate 4 computers on existing network to just internet connection, but not a kiosk
Hello. I have an existing network (Win2003 Server with Active Directory, DNS, third party apps including license managers and clients running Windows XP) and would like to add 4 computers that will only have internet access. The normal clients access shares on the server and the internet, while the new clients should only have access to the internet. I would like to ensure that the 4 new clients can not even see the server or the regular clients.
If I plug the new computers into my network, how can I let the new users have local control, but make it so they can not see my existing network (and only have access to the internet)?
network.PNG
If I plug the new computers into my network, how can I let the new users have local control, but make it so they can not see my existing network (and only have access to the internet)?
network.PNG
You can set the IP address in a different subnet using a new switch or using the existing cabling and switches but implementing VLANS
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I second TigerMatt's suggestion. No point overcomplicating a simple task with VLANs and routing. Just make sure that the new machines are not members of the AD domain. They'll still pick up DHCP info from Active Directory and therefore get access out to the web using a DHCP assigned gateway, but no domain credentials = no network access!
Then set up a specific exclusion on the router to only allow traffic from that subnet to the 'net and not into the internal network.
You would set the DNS entries for the 4 p.c.'s to use an external DNS Server so internal name lookup is impossible as well.