Limit Access using Firewall settings

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

Help
I want to share my network connection with other systems in my network but I
only want the other system to be able to access only MS update and antivirus
sites. I don't want to allow any other traffic in or out from the network
sharing system or the systems behind this box. How can i configure the
firewall to do this?
 
Help
I want to share my network connection with other systems in my network but I
only want the other system to be able to access only MS update and antivirus
sites. I don't want to allow any other traffic in or out from the network
sharing system or the systems behind this box. How can i configure the
firewall to do this?
Click to expand...

You will need to provide a bit more detail about your network before we can help
you.
# Do you wish to allow unrestricted access on your computer(s)?
# How many computers do you need to restrict?
# Do you want to filter the other computers using firewalls on the computers, or
on a filter (router or gateway)?
# What router or internet gateway do you have?
# What operating system do your computers run?
# Do you have an AD domain?
 
Chuck,
I want the system sharing ( we'll call this the router) the internet
connection to only be able to connect to the MS update and antivirus sites as
well as allow all of the other systems behind the router to access only the
defined sites for updates. The computers behind the router will not be static
.. I want to be able to pull all of the updates down to the systems behind the
router without having a chance to expose them to the network before all of
the patches are applied. The router can be the filter for allowing the MS
update and Antivirus sites to be accessible to the other systems. I do not
want the systems behind the router to be able to access anything else but
these update sites. The systems behind the router are not part of a domain
and these are all windows systems. I have not setup a system as of yet to be
the router so any suggestions would be appreciated
 
Chuck,
I want the system sharing ( we'll call this the router) the internet
connection to only be able to connect to the MS update and antivirus sites as
well as allow all of the other systems behind the router to access only the
defined sites for updates. The computers behind the router will not be static
. I want to be able to pull all of the updates down to the systems behind the
router without having a chance to expose them to the network before all of
the patches are applied. The router can be the filter for allowing the MS
update and Antivirus sites to be accessible to the other systems. I do not
want the systems behind the router to be able to access anything else but
these update sites. The systems behind the router are not part of a domain
and these are all windows systems. I have not setup a system as of yet to be
the router so any suggestions would be appreciated
Click to expand...

OK, so what you're setting up is a quarantine LAN, for all computers. You need
a router that will block all traffic except specific domains or subnets.

I don't think that this is a Windows XP issue. I think you'll get better
answers in comp.security.firewalls, or maybe BBR Security:
<http://www.dslreports.com/forum/security>.

I personally would get a NAT router that will do "deny all" then "allow only"
rules, and setup rules for the specific sites. The folks in the forums may have
better ideas.
 
thanks
--
JP


Chuck said:
OK, so what you're setting up is a quarantine LAN, for all computers. You need
a router that will block all traffic except specific domains or subnets.

I don't think that this is a Windows XP issue. I think you'll get better
answers in comp.security.firewalls, or maybe BBR Security:
<http://www.dslreports.com/forum/security>.

I personally would get a NAT router that will do "deny all" then "allow only"
rules, and setup rules for the specific sites. The folks in the forums may have
better ideas.
Click to expand...
 
Back
Top