Join Us Close. Join Tek-Tips Forums! Join Us! By joining you are opting in to receive e-mail. Promoting, selling, recruiting, coursework and thesis posting is forbidden.
Students Click Here. I was told the best way in my envirnment is to use the DNS server? How exactly do I do that? What are the steps, etc? Thanks, Phillip. Well you could add false address records but it's not a very effective way as the users can just use the IP address to getaround it.
Does Adult and specific domain blocking with all the sub-domains. First, at the perimeter firewall, you block ALL outbound internet access from all hosts except from the proxy server. You can get some free proxy software out there such as SQUID, but it takes a bit of work to get the authentication portion configured properly. Alternatively, you can opt for using hte proxy and simply deploy a firewall that has URL filtering capabilities.
Do you have ISA in your environment? Also if you want to achieve through GPO,can you explain you want them to give access to above said websites or you don't want them to access internet at all? I have a similar case with a Win2k8 R2 Server and Windows mixed environment. I previously use TMG on windows server r2 for blocking websites for active directory users. Now new server is on windows server I want to block websites for active directory users. I have to adapter on my server machine.
Please guide me or any tutorial for this. Please no e-mails, any questions should be posted in the NewsGroup.
This posting is provided "AS IS" with no warranties, and confers no rights. You have misspell the server name. Use edge firewall if you do not want TGM.
Microsoft discontinued its effort in firewalls. That is the reason for using third party firewall. Some time ago I used simple tools to prevent users from viewing some URL, namely with hosts files. In hosts files there are FQDS assigned to loopback address DNS cache should be cleared before you configure hosts files and node should allow for hosts file to be the first the client computer asks when resolving FQDN to IP address. There are 40 client connections that uses a Foxpro program on that server.
I suspect that those 40 clients are the ones that trigger that process but my boss thinks that Foxpro program of which we don't have source code makes some updates or transfers from Internet at pm.
So, in order to rule out possibilities, I'd like to block Internet access on that server. Is it possible to block Internet access on a Windows Server it's not domain controller but only accessable in the LAN? One idea is to block ports 80 and TCP from the IP address of the server in the router, but we had no success doing so.
Another idea is to put off Gateway address and DNS addresses from network card properties. Theoretically, it will not be able to access the internet. But doing that, I'm afraid that it will block LAN connections. Presumably, you could do the same thing with Windows firewall on the server itself, though any admin on the server would be able to change it. You could also assuming you have "proper" switches and network architecture set the server onto a VLAN that isn't allowed to reach the internet router.
Of course, what solution is best for your particular case relies on a lot of information you haven't provided, and probably on networking equipment and expertise you don't seem to posses.
If you want more than a short list of possible approaches, you'll just have to provide more details and the reason you're doing this wouldn't hurt either.
0コメント