We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

Block about 3 websites

gw6211
gw6211 asked
on
Medium Priority
238 Views
Last Modified: 2013-12-08
ok, i've seen alot of questions on this but they seem old and i need to get this done.

the boss called and said to block a single user from myspace, facebook etc....

So, i went into the router, Netgear FVX538 and put her machine into a group and blocked that group from those sites via keyword blocking.  Well, that did it but the problem is that now the internet speed is greatly reduced to the point im getting lots of calls.  The user called first and then others that arent even being blocked are calling.
We are running a domain enviroment with:
DNS server
DHCP
Active Directory

Comment
Watch Question

Alan HardistyCo-Owner
CERTIFIED EXPERT
Top Expert 2011

Commented:
If you user does not move machine ever - modify her hosts file to include www.facebook.com and add the IP 127.0.0.1 which will ask it to search for the website on her local machine.
The hosts file is located in c:\windows\system32\drivers\etc
Alan HardistyCo-Owner
CERTIFIED EXPERT
Top Expert 2011

Commented:
Lift the firewall restriction and your life will be happier once more.
Add as many websites as you need to the hosts file.  The user will get a Site COuld Not Be Found message.
You can also remotely modify the file too - so the user is totally unaware you made any changes.

Commented:
The host file method would be the simplest way of doing things but it could always be fixed by the user. Which version of internet explorer does the user have?

Author

Commented:
ok, that sounds good, acutally both of you, i have never modified a host file before, so i will need some help on that if you dont  mind.

Author

Commented:
namol, IE7 and im not so sure she is capable for one, and two, she is a RESTRICTED user from previous problems so, would a program even have the rights to change the host or get around it?
Co-Owner
CERTIFIED EXPERT
Top Expert 2011
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview

Author

Commented:
wow, good job everyone, i need a moderator to figure out points as all of you answered.  if i select multiple soultions does it give the 500 points to all or does it spit it?

Commented:
Since you are using active directory, another approach you can with is using Active Directory to control ipsec rules for filter or you can setup a proxy of some sort (squid/squid guard/a barracuda webfilter etc) that would allow finer control of web activity.
Alan HardistyCo-Owner
CERTIFIED EXPERT
Top Expert 2011

Commented:
If you choose multiple solutions, you get to split the points however you feel.

Author

Commented:
ok, thanks alan, one last question, on your solution

Start Run [type] notepad \\userscomputer\c$\windows\system32\drivers\etc\hosts - this assumes you have admin rights.  If not, do this on the server.

Then simply add:

127.0.0.1   [tab]   www.facebook.com

127.0.0.1   [tab]   www.myspace.com etc.

does this replace the host file or add one or modify the current one?
Alan HardistyCo-Owner
CERTIFIED EXPERT
Top Expert 2011

Commented:
Modifies the existing one.
Alan HardistyCo-Owner
CERTIFIED EXPERT
Top Expert 2011

Commented:
Lose the www part from my entry - probably best to just put the domain as NAMOL has put.
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a free trial preview!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.