Solved

How can I block some PCs to the Internet ?

Posted on 2008-10-23
12
258 Views
Last Modified: 2013-12-08
My boss is asking me to block some PCs to the Internet but can still get email using POP3.
What's the easy way to do?

Environment :
Server : 1 x Windows 2003 Standard Server
PCs : 10 x PCs XP Professional SP2
PCs software: NAV version 10
Network Media: Standard Cat 5 Cable
Switch : Simple 16 ports 10/100 Mbps switch hub ( Non-management module )
Router : ADSL modem to Internet

0
Comment
Question by:Joe_LAI
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
12 Comments
 
LVL 1

Expert Comment

by:lk-data
ID: 22784517
You can do it with an IP Security Policy in Group Policy - Computer Configuration | Windows Settings | Security Settings | IP Security Policies. If you've already assigned an IP Security Policy then edit it to include the blocking of port 80 and 443.
0
 

Author Comment

by:Joe_LAI
ID: 22784590
Is it doing on the server ? All PCs are using manually IP address. No using DHCP at router or server.
PCs IP setting:
IP address 10.0.0.100 - 110
Subnet Mask 255.255.255.0
Default Gateway: 10.0.0.1
DNS : 10.0.0.10
Server  IP setting:
IP address 10.0.0.10
Subnet Mask 255.255.255.0
Default Gateway: 10.0.0.1
DNS : 10.0.0.1
0
 
LVL 1

Expert Comment

by:lk-data
ID: 22784738
Are yout PC's in a Domain?

If yes then you do it on the Server, and it will be put on the workstations at logon. Otherwise you have to do it on every local Workstation, then you have to be sure the users can't access the Group policy settings, or they can remake the settings if they know how to do that...

The IP address has nothing to do with this policy.
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 

Author Comment

by:Joe_LAI
ID: 22785096
Yes, all PCs are in a Domain.
How to select block PCs to IP Security Policy
0
 

Author Comment

by:Joe_LAI
ID: 22785518
I tried to setup but not working. Any other way to do that ?
0
 
LVL 1

Accepted Solution

by:
lk-data earned 400 total points
ID: 22785613
I found this site, with some screendumps on:

http://www.petri.co.il/block_web_browsing_with_ipsec.htm

0
 
LVL 1

Assisted Solution

by:lk-data
lk-data earned 400 total points
ID: 22785650
The same site in the buttom there is this link:

http://www.petri.co.il/configuring_ipsec_policies_through_gpo.htm

This is the way to do it on the server, and let the logon distrubute it to the workstations, when the users logon the domain.

0
 
LVL 4

Assisted Solution

by:smittyboom
smittyboom earned 100 total points
ID: 22787002
Simple way to do it.
Open IE>Internet Options>Connections>LAN Settings>Check Use A Proxy Server>type 0.0.0.0. in the box and check the bypass proxy for local sites.
0
 
LVL 9

Expert Comment

by:Sci-Fi-Si
ID: 22790292
Nice one smittyboom, I like the cut of ya jib ma' boy what can I add to that?

Problem solved
0
 
LVL 1

Expert Comment

by:lk-data
ID: 22790375
That's too easy to undo, and the group policy this is one thing you only have to do once, then all there logon to the domain get this group policy, and can't browse the web.
0

Featured Post

What, When and Where - Security Threats from Q1

Join Corey Nachreiner, CTO, and Marc Laliberte, Information Security Threat Analyst, on July 26th as they explore their key findings from the first quarter of 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How can MDaemon MRK files and MSG files work together? We can also say that, how worldclient and Outlook connecter works, using both application collectively you can view your mails, contacts, calendar, task, notes. In this article you can unders…
Explore the encryption capabilities built into Google Apps and how these features can help you meet privacy policy and regulatory compliance, but are not a full solution. Understand and compare the most popular email encryption services for Google A…
Google currently has a new report that is in beta and coming soon to Webmaster Tool accounts. This Micro Tutorial will highlight new features for Google Webmaster Tools.
This Micro Tutorial will demonstrate how nuggets on the Web are formatted by using Chrome Developer Tools. These tools would not only view the site's CSS but it can also modify it and save the CSS to use on your own site.
Suggested Courses

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question