• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 322
  • Last Modified:

Prevent a workstation from accessing the Internet

Dear Experts,

Is there a way to block a workstation from accessing the Internet (or to communication with the outside world)?  Yet, allowing it to run Windows Update, virus-scan update, or send e-mail alerts, etc.

Any ideas/suggestions would be grately appreciated.  
0
swgit
Asked:
swgit
1 Solution
 
Getsum_BloodlustCommented:
You would need a proxy server for this.. Microsoft does have one which you could buy or you could subscribe to a SaaS provider with Proxy.

Or, You could run up a free WSUS server on your network for the Microsoft updates. this will enable the workstation to use that server for updates and not Microsoft. You could also do the same with your virus package if you have that option. a lot of corporate virus packages will have a centralised management you can tap your workstations into.
0
 
cbmmCommented:
this is best done by using an appliance to filter traffic.
0
 
Jason WatkinsIT Project LeaderCommented:
Remove the computer's default gateway setting in the IP configuration. The machine will be able to communicate on the LAN, but that's it. This would break Windows Update and anything else.
0
Get quick recovery of individual SharePoint items

Free tool – Veeam Explorer for Microsoft SharePoint, enables fast, easy restores of SharePoint sites, documents, libraries and lists — all with no agents to manage and no additional licenses to buy.

 
mikeewaltonCommented:
I will give you the easiest, cheapest (free) way of doing this, especially if you're just talking a few machines.

(See attached) attach.doc
0
 
ChiefITCommented:
nice one Mike:

I was going to suggest a router's ACL. But, this really is much easier to not have to program the router.
0
 
cbmmCommented:
wouldnt mikes suggestion also prevent, windows updates, antivirus updates, etc. doesnt windows updates uses internet explorer options to connect?
0
 
mikeewaltonCommented:
That's why they get listed in the proxy bypass, check the doc out again, I cover that.
0
 
wantabe2Commented:
Here's a FREE software that will do just that. Just install it & edit the settings as you wish.

http://www1.k9webprotection.com/get-k9-web-protection-free
0
 
cbmmCommented:
ok then, perfect. i didnt scroll down
0
 
swgitAuthor Commented:
@Mike - This is perfect.  It's really what I need.  It's something that I only want to get done on certain machines.  Thanks so much!!

@Getsum, cbmm, Firebar, ChiefIT, wantabe2 - Thank you all for your inputs.
0

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

Tackle projects and never again get stuck behind a technical roadblock.
Join Now