Solved

Block all web access with exceptions

Posted on 2009-04-13
5
323 Views
Last Modified: 2012-05-06
Basically we have just istalled sbs 2003 and the boss wants to block all internet access with the exception of a few sites that staff need to access. There is msn use, facebook etc not to mention game playing.
We are SBS 2003 premium (not r2) and too late for the isa update that i believe had to be ordered on disk.
There are 3 -4 sites that we want to restrict users to (power users must still have al l access) and of course still allow pc's to update.
Clients currently view internet via proxy server on port 8080 - isa server.

Now I am rather green at this - did not set up the proxy server myself although did install the server / network etc - so please keep instructions as basic and step by step as possible.

Thanks - Brett.
0
Comment
Question by:Brett_Parker
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 24133232
0
 

Author Comment

by:Brett_Parker
ID: 24136052
Thanks,

I will give it a go this evening - i am a little suprised as i thought the ISA could stop sites.

Brett.
0
 

Author Comment

by:Brett_Parker
ID: 24151145
OK,
Well i have given it a go.

It does not seem as though you can set groups with permissions (as i mentioned above it is only those listed as 'users' we wish to stop - all power users must still have access to the entire web) unless a second static ip address is purchased.

also, our main problems are facebook and MSN - the open dns works fine and blocks myspace, porn sites etc. However i am still able to view Facebook on client workstations, have not tested MSN yet but to be honest if this cant block facebook then it is of no use.

i did try and leave a message on their forum, 8 times in fact but for some reason the page timed out (maybe they are blocking parts of their own site - who knows) so decided to return here for further guidance.

If ISA cannot do this (our previous network ran through a netgear router and there was no problems at all) is it really worth the money? i feel sure as a firewall it must have the ability to block all sites for clients in the users group (with a few exceptions) whilst letting power users connect to everything?


Regards - Brett
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 24151260
Try windows steady state
http://www.microsoft.com/downloads/details.aspx?FamilyID=d077a52d-93e9-4b02-bd95-9d770ccdb431&displaylang=en
 
You can configure the machines so that they can only go to sites you specify. You will find many other settings you might find useful as well.
0
 

Accepted Solution

by:
Brett_Parker earned 0 total points
ID: 24182708
Hello again,

I found other settings that are usefull (an answer to the MSN problem) however when reading the documentation this will not work if connection is through a proxy server (which is how the workstations connect).

Would it be possible to create a second proxy on a different port - block all sites with exceptions and point the users to that whilst the power usuers continue to access through the original?

Brett.
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A lot of problems and solutions are available on the net for the error message "Source server does not meet minimum requirements for migration" while performing a migration from Small Business Server 2003 to SBS 2008. This error pops up just before …
I work for a company that primarily works with small businesses as their outsourced IT vendor. As such the majority of these customers utilize some version of Small Business Server. Due to the economics of running a small business, many of these cus…
In this video, viewers are given an introduction to using the Windows 10 Snipping Tool, how to quickly locate it when it's needed and also how make it always available with a single click of a mouse button, by pinning it to the Desktop Task Bar. Int…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question