[Last Call] Learn how to a build a cloud-first strategyRegister Now

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 351
  • Last Modified:

block internet traffic

can i block all internet traffic from a my location to the internet except to anothe rgaeway
im getting a secong internet connection an i would like to only use it for a second company that needs access to some of my webservices.
i would like to only allow traffic from his gateway to use the connection and drop all internet traffic is this possible
can i configure a routing rule to only allow that gateway and drop all other?
1 Solution
You are not clear on what you want to actually do.  I think what you are are saying is you have two internet connections and want to use it for only the second company, even though they are on the same physical and probably the same subnet too.  So company A traffic will be using the Connection A, and company B will use Connection B, but you will share other resources like printers, servers, etc.

The easiest way to do this is to have a firewall that can handle routing traffic based on different criteria.  You would also need to have a DHCP scope for the computers in company A and track what they are so you can properly make reservations for them in the given scope.  You can then also make the gateway the IP of the 1st connection, and the other scope will have the gateway of the second connection.

What evironment do you have.  Windows 200x?
Remove the Gateway IP from your network Settings, Or change the Gateway IP to point to a different IP that is not a gateway. That will stop all Internet traffic.
dano992Author Commented:
let me be aliitle more clear
i have an internet connection for my company, this connection is used for everyday services.
we are providing a service for another company (our client) which has 3 offices across the country
 this service will require the client to connect to our service using a web service interface to a deticated network that we built specifically for this client.

our plan is to get a deticated seperate internet connection for this network (seperate from our everday inteernet use)

since this new  internet connection is only utilzed by our client we would like to block general access from anyone on the internet on this connection, and allow only the clients to be able to connect back to us

could we place access control routing rules on the router or firewall to block all incomming internet traffic except from the client gateway?
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

dano992Author Commented:
one more thing
is it possible to have say a deny any any on the router or firewall (block all incoming internet traffic)
and have only allow for a couple of IP's addresses into the network
You have an internet line where you only want to accept traffic from a certain set of public IPs? A number of firewalls can handle this function. The firewall will keep a list of public IPs that are allowed to connect to that port. I know Watchguard will, I remember something like that in some Cisco models, I'm sure there are others as well.
dano992Author Commented:
exactlly i have a internet line (T1) and would like to block general incoming internet access, and only allow certain public IPs (my clients) foe security reasons
can this be done on the internet router or the firewall
need to know if this is possible
It is absolutely possible. The real question is can your current firewall do it or what firewall do you need to move to?
You must find out the range of IP the client is coming from.
Set 2 rules in the firewall.
from untrust to trust
client ip range - system, permit
any - any, deny.

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now