D
D.P. Roberts
Our Unix guy claims this can't be done with Windows:
We have a lab at a university with 40 Windows XP Pro computers on a Windows
2003 Active Directory domain. Normally, these computers are open to freely
send/receve data via the internet. However, sometimes a professor conducting
an exam in this lab would like everything blocked except the specific
website used for the exam. In other words, during the exam students cannot
access e-mail or visit any site except for the specific exam site.
Our Unix guy (who hates vehemently hates Windows) has said it can't be done
with Windows firewall because it won't block both outbound and inbound
traffic. So he has set up an elaborate and complicated firewall system which
involves a unix-based firewall hardware device, setting up local accounts on
the 40 lab boxes, and swapping switch cables back and forth each time an
exam takes place.
My question: Isn't there a simpler and easier way to do this using Windows
firewall and/or group policy, or perhaps a third-party software tool?
Thanks, it would be great to show our Unix guy that Windows CAN accomplish
this task!
We have a lab at a university with 40 Windows XP Pro computers on a Windows
2003 Active Directory domain. Normally, these computers are open to freely
send/receve data via the internet. However, sometimes a professor conducting
an exam in this lab would like everything blocked except the specific
website used for the exam. In other words, during the exam students cannot
access e-mail or visit any site except for the specific exam site.
Our Unix guy (who hates vehemently hates Windows) has said it can't be done
with Windows firewall because it won't block both outbound and inbound
traffic. So he has set up an elaborate and complicated firewall system which
involves a unix-based firewall hardware device, setting up local accounts on
the 40 lab boxes, and swapping switch cables back and forth each time an
exam takes place.
My question: Isn't there a simpler and easier way to do this using Windows
firewall and/or group policy, or perhaps a third-party software tool?
Thanks, it would be great to show our Unix guy that Windows CAN accomplish
this task!