Restricting Internet Access at the Server Level

J

Jason B.

I have a question about restricting internet access at the server
level based on IP address. Here is my scenerio:

Our business uses the small P1000 Fujitu computers for our sales team.
The previous IT director restricted their internet usage on the client
side by putting in an incorrect DSN server address. Our sales team
uses software that must connect to one internet website, which was
enabled by modifying the HOST file on each client.

Today that website changed their DSN number and caused a massive
problem this morning. Each client needed their host file updated.

What I would like to do is put in the correct DSN entry for each
client and restrict their internet access to just that one website at
the server level.

We are using Windows 2000 Active Directory.

What would be the best way to approach this?

Thank you kindly for your advice!

Jason
 
P

ptwilliams

Firstly, I assume you're talking DNS?? ;-)

If you don't want anyone accessing the web, and only viewing internal pages
the best way to do this is to create a root '.' zone in DNS. You do this by
creating a new zone and entering a period '.' When you create a root zone,
the root hints are disabled and the DNS server cannot resolve external
addresses.

Internal addresses will be fine, unless they have periods in the address and
you are running a proxy server. In which case you'll have to tell IE to not
use a proxy for local addresses and add an exception in the form of
*.yourDomain.com into the IE exceptions list.

--

Paul Williams
_________________________________________
http://www.msresource.net


Join us in our new forums!
http://forums.msresource.net
_________________________________________


I have a question about restricting internet access at the server
level based on IP address. Here is my scenerio:

Our business uses the small P1000 Fujitu computers for our sales team.
The previous IT director restricted their internet usage on the client
side by putting in an incorrect DSN server address. Our sales team
uses software that must connect to one internet website, which was
enabled by modifying the HOST file on each client.

Today that website changed their DSN number and caused a massive
problem this morning. Each client needed their host file updated.

What I would like to do is put in the correct DSN entry for each
client and restrict their internet access to just that one website at
the server level.

We are using Windows 2000 Active Directory.

What would be the best way to approach this?

Thank you kindly for your advice!

Jason
 
J

Jason B.

That would work but the problem is that I only want 20 or so IP
addresses restricted from using the internet -- not the entire domain.

Thank you for your help!!

Ps: OOPS! I got DNS and DSN mixed up. :)
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

restrict website surfing 2
How to allow server access but restrict internet access? 5
Restricted Access Levels in BCM 2007? 1
Vista Business client to XP ICS 2
Restricting Internet Access 1
Prevent non-VPN connected Internet access for external users? 7
Restrict a user's access during certain times.. 2
Restrict Internet by User 3

Top