• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 774
  • Last Modified:

Restrict Internet access to only allow email

I have a remote site that now needs Internet access.  I don't have VPNs setup for the remote site to connect to the main domain.  I want to restrict the computers to only be able to access email and block websites such as Facebook, MySpace, YouTube, Hotmail, Gmail, and Yahoo mail.  I would need to allow the work email domain.  I don't mind paying for software to do this, but I'm just not sure what software to use.  
4 Solutions
You can configure this on firewall.
I came across a software called Browse Control which will do the jobb and you can configure it to allow access during specific times or

cheap solution

or your own proxy?

I setup firewall on network which locks down almost everything

what users did downloaded software called ultrasurf to bypass which works then I restricted it through group policy - for software restriction. But they keep on sending updates every week and I cant block it now

anyways good luck to you

Tony JLead Technical ArchitectCommented:
Probably the cheapest method for you would be to put an additional DNS server onto your domain.
Have the domains you want them to access in there but nothing else. No forwarders and no root hints. Any requests to pages not in your DNS server will go unresolved and they'll get a 404 not found.
You could then edit the 404 error on the client machines to state something like they have attempted to access a non approved site.
Ehab SalemIT ManagerCommented:
I agree that using the firewall/proxy is the best way, simply restrict access to all sites and allow only to the mail site.
Another way is to use Symantec EndPoint Protection, if they are all updated by a server. You can setup a firewall policy to restrict all internet access except to the site you want.

You may also want to take a look at Untangle, www.untangle.com

It offers quite a few extra tools, and is free.

You will need a dedicated pc to install it on.  Myself, I put it on a retired workstation, popped in a second nic, and was up and going.  We mainly use its web filtering.  You can put on location-wide limits, or limit to workstation IP address (there is a pay-for upgrade that will allow integration with AD).

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free tool for managing users' photos in Office 365

Easily upload multiple users’ photos to Office 365. Manage them with an intuitive GUI and use handy built-in cropping and resizing options. Link photos with users based on Azure AD attributes. Free tool!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now