I have a main head office site that uses several servers to filter web requests. The users are restricted by their AD credentials. A number of groups in the filtering software are created and the AD users are applied to those groups. I have a number of mobile clients they run an application that connects back to the same webfiltering solution except to a seperate server in the DMZ. They get a standard web filtering policy applied, if I want to be specific I have to join the mobile user to the domain so I can apply the policy to their AD username.
I have multiple remote sites that now want to benefit from different policies for webfiltering as oppose to a blanket policy, all of these sites are on their own domain. I thought about creating a VPN and a trust between domains and applying them to the webfiltering policies but I'm thinking there has to be a more efficient way of doing this. I briefly looked at opendns but am unsure if this would work. I am interested to see what other people are using for similar scenarios.