• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 307
  • Last Modified:

Controling Internet Access

I have a network that is primarily server 2008 R2 and windows 7  with a few xp machines still left.

We need to lock down internet access on production floor terminals to prevent abuse. Theere are several clound servics that all users need and thus need internet access for so I need help with a way to lock down access except these specific sites.

Also there are 2-3 users that need to use these same machines that need full unrestricted internet access when they log in.

There is really not a budget so it would be hard to buy any 3rd party warez. is there a way to do this in server 2008 with GPO's maybe?

I am very green on GPO's use and creation so I wanted to see if someone maybe had a example of something similar?
  • 2
1 Solution
Miguel Angel Perez MuñozCommented:
You can use linux with squid, you need any kind of proxy to control Internet access.
ATL74Author Commented:
Looking for more of a GPO method if possible to do this with what we have and not buy things or install additional items to the network.
When you reference "Internet access" do you really mean all Internet access, including e-mail, etc, or just web on the Internet?

What firewall are you using?

Depending on the firewall, you may be able to have it proxy web access based on user ID. Some firewalls support LDAP linkage to AD to acquire user names and may be able to restrict all but those in a given AD (or firewall) user group.

Because you wish to have permitted users accessing otherwise restricted sites from the otherwise restricted workstations, some proxy system is probably your best bet. If all you wanted was to restrict ALL Internet access, you could just drop the gateway address from the restricted workstations (if production does NOT need access to another LAN).

 - Tom
ATL74Author Commented:
I just wan to drop website access not email and such and only drop website access for some users. There about 10 sites for SaS applications that all users need access to.

Using Sonicwall Tz 200 firewall but we would rather handle it based on GPO if possible.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now