Block about 3 websites

ok, i've seen alot of questions on this but they seem old and i need to get this done.

the boss called and said to block a single user from myspace, facebook etc....

So, i went into the router, Netgear FVX538 and put her machine into a group and blocked that group from those sites via keyword blocking.  Well, that did it but the problem is that now the internet speed is greatly reduced to the point im getting lots of calls.  The user called first and then others that arent even being blocked are calling.
We are running a domain enviroment with:
DNS server
DHCP
Active Directory

gw6211Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Alan HardistyCo-OwnerCommented:
If you user does not move machine ever - modify her hosts file to include www.facebook.com and add the IP 127.0.0.1 which will ask it to search for the website on her local machine.
The hosts file is located in c:\windows\system32\drivers\etc
0
Alan HardistyCo-OwnerCommented:
Lift the firewall restriction and your life will be happier once more.
Add as many websites as you need to the hosts file.  The user will get a Site COuld Not Be Found message.
You can also remotely modify the file too - so the user is totally unaware you made any changes.
0
namolCommented:
The host file method would be the simplest way of doing things but it could always be fixed by the user. Which version of internet explorer does the user have?
0
PMI ACP® Project Management

Prepare for the PMI Agile Certified Practitioner (PMI-ACP)® exam, which formally recognizes your knowledge of agile principles and your skill with agile techniques.

gw6211Author Commented:
ok, that sounds good, acutally both of you, i have never modified a host file before, so i will need some help on that if you dont  mind.
0
gw6211Author Commented:
namol, IE7 and im not so sure she is capable for one, and two, she is a RESTRICTED user from previous problems so, would a program even have the rights to change the host or get around it?
0
Alan HardistyCo-OwnerCommented:
Start Run [type] notepad \\userscomputer\c$\windows\system32\drivers\etc\hosts - this assumes you have admin rights.  If not, do this on the server.
Then simply add:
127.0.0.1   [tab]   www.facebook.com
127.0.0.1   [tab]   www.myspace.com etc.
You can set this to copy down every day in their login script to stop them overwriting it/ modifying it etc.
Sounds like namol has other options up his sleeve!
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
namolCommented:
If this is on XP\2000\Vista the file will be located in %SystemRoot%\system32\drivers\etc\.
On the user's pc, open this file with notepad. You'll see some examples in there like this:

#      102.54.94.97     rhino.acme.com          # source server
#       38.25.63.10     x.acme.com              # x client host

127.0.0.1       localhost
#Add These Lines to Block Facebook/myspace/youtube/etc
127.0.0.1 facebook.com
127.0.0.1 myspace.com
127.0.0.1 youtube.com
127.0.0.1 twitter.com

Etc
0
gw6211Author Commented:
wow, good job everyone, i need a moderator to figure out points as all of you answered.  if i select multiple soultions does it give the 500 points to all or does it spit it?
0
namolCommented:
Since you are using active directory, another approach you can with is using Active Directory to control ipsec rules for filter or you can setup a proxy of some sort (squid/squid guard/a barracuda webfilter etc) that would allow finer control of web activity.
0
Alan HardistyCo-OwnerCommented:
If you choose multiple solutions, you get to split the points however you feel.
0
gw6211Author Commented:
ok, thanks alan, one last question, on your solution

Start Run [type] notepad \\userscomputer\c$\windows\system32\drivers\etc\hosts - this assumes you have admin rights.  If not, do this on the server.

Then simply add:

127.0.0.1   [tab]   www.facebook.com

127.0.0.1   [tab]   www.myspace.com etc.

does this replace the host file or add one or modify the current one?
0
Alan HardistyCo-OwnerCommented:
Modifies the existing one.
0
Alan HardistyCo-OwnerCommented:
Lose the www part from my entry - probably best to just put the domain as NAMOL has put.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Web Browsers

From novice to tech pro — start learning today.