Free Weekly Tech Newsletter

studiowebx · 10-04-2004, 03:24 PM

In a small office I have a small network of 5 computers all running Windows 2000 Pro. They all logon on to a Windows 2000 Server which is the Primary Domain Controller. I have a router that connects the PDC with the client computers and then the Cable Modem is connected to the router......

What I would like to do is have more control over what the clients can access over the internet. I will be purchasing software similar to WebSence to control access.

My question is:

How would the hardware be configured so that the clients first go throught the server running the software and when the software says "This site is OK" it then lets them through to the internet?

I hope I am making sence and it may be a dumb question but I am a newbie.....

Thanks!

**mbossman2** · 10-04-2004, 03:41 PM

Set the server to act as a proxy server, direct the browers there and that will then "hold" the request until it is checked against the web filtering lists and the "pass" or "block" command is given. assuming you are using an off box server to handle the filtering, there are several devices out there that offer "in box" filtering (Cisco routers can, Sonicwall firewalls can, Fortinet products can etc)

piasabird · 10-05-2004, 09:05 AM

Might want to do a search for Virtual Private Netwroking (VPN). The network would have to be set up for this to work and usually requires a router with VPN or that supports VPN Tunnels. I have never tried it myself.

EDIT:
Above may not apply I didnt read it well enough.

If you had a Networking environment where you were not using Peer-to-Peer like Novell Netwrare, you might be able to issue static IP's and restrict it by IP. With the user name and password you can use the user name and even force a user to be assigned to a specific NIC Address. Normally a user in a networking system can be denied access to a server by username, groupname, IP, or by the IP of a switch or hub. Some routers may be configurable like this. Helps if you are not using DHCP to automatically assign IP Addresses.

The application could also use something like Certificates. Lotus Notes uses a certificate. If you dont have an up to date certificate on your machine you cant access your e-mail. Might want to look at SSL or whatever it is called. I think the application would have to have this as an option. Might require an upgrade of the application software in some cases.

10-04-2004, 03:24 PM	#1
studiowebx Member (5 bit) Join Date: Sep 2004 Posts: 21	Is client computers access internet through server possible? In a small office I have a small network of 5 computers all running Windows 2000 Pro. They all logon on to a Windows 2000 Server which is the Primary Domain Controller. I have a router that connects the PDC with the client computers and then the Cable Modem is connected to the router...... What I would like to do is have more control over what the clients can access over the internet. I will be purchasing software similar to WebSence to control access. My question is: How would the hardware be configured so that the clients first go throught the server running the software and when the software says "This site is OK" it then lets them through to the internet? I hope I am making sence and it may be a dumb question but I am a newbie..... Thanks! Share Share this post on Digg Del.icio.us Technorati Twitter

10-04-2004, 03:41 PM	#2
mbossman2 I am, in reality, a moose Staff Premium Member Join Date: Aug 1999 Location: RTP, NC Posts: 2,441	Set the server to act as a proxy server, direct the browers there and that will then "hold" the request until it is checked against the web filtering lists and the "pass" or "block" command is given. assuming you are using an off box server to handle the filtering, there are several devices out there that offer "in box" filtering (Cisco routers can, Sonicwall firewalls can, Fortinet products can etc) Share Share this post on Digg Del.icio.us Technorati Twitter __________________ Veritas Principium Libertas Traveling Moose Last edited by mbossman2; 10-04-2004 at 03:44 PM.

10-05-2004, 09:05 AM	#3
piasabird Member (11 bit) Join Date: Mar 2002 Location: Confluence of the Mississippi and Misouri Rivers Posts: 1,242	Might want to do a search for Virtual Private Netwroking (VPN). The network would have to be set up for this to work and usually requires a router with VPN or that supports VPN Tunnels. I have never tried it myself. EDIT: Above may not apply I didnt read it well enough. If you had a Networking environment where you were not using Peer-to-Peer like Novell Netwrare, you might be able to issue static IP's and restrict it by IP. With the user name and password you can use the user name and even force a user to be assigned to a specific NIC Address. Normally a user in a networking system can be denied access to a server by username, groupname, IP, or by the IP of a switch or hub. Some routers may be configurable like this. Helps if you are not using DHCP to automatically assign IP Addresses. The application could also use something like Certificates. Lotus Notes uses a certificate. If you dont have an up to date certificate on your machine you cant access your e-mail. Might want to look at SSL or whatever it is called. I think the application would have to have this as an option. Might require an upgrade of the application software in some cases. Share Share this post on Digg Del.icio.us Technorati Twitter Last edited by piasabird; 10-05-2004 at 09:46 AM.

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes	Rate This Thread
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode	Rate This Thread:

Need Some Help? Type Your Keywords Here:

Still Need Help? Type Your Keywords Here:

Free Weekly Tech Newsletter

Subscribe to THE INSIDER

Need Some Help? Type Your Keywords Here:

Still Need Help? Type Your Keywords Here:

Free Weekly Tech Newsletter