Security Basics mailing list archives
RE: block internet at two workstations
From: "Peter McLernon" <pcm () mclernon com>
Date: Wed, 7 May 2003 19:59:27 -0400
If the computers are Windows 2000, and the users are using IE I believe you can set the local security policy to not allow internet access. You can do this by going to the security policy, and change the settings for Internet Explorer, telling it to access the web via a proxy server that doesn't exist. I have done it in my office via domain policy, on the local machine, but I believe that you can still do it if the Box is part of a workgroup. Peter McLernon -----Original Message----- From: Lucas Zaichkowsky [mailto:Lucas () dnsys com] Sent: Wednesday, May 07, 2003 11:59 AM To: Tim Laureska Cc: security-basics Subject: RE: block internet at two workstations It looks like your router (Assuming it's firmware v1.1 or newer) only allows you to block access to specific services, such as WWW. You might want to just get a Linksys BEFSR11 or BEFSR41 and use that. They're very inexpensive. You can set up a MAC filter so that their network card is rejected by the router. Configure their TCP/IP manually, making sure not to use an IP that the router is set up to hand out via DHCP. -Lucas -----Original Message----- From: Tim Laureska [mailto:hometeam () goeaston net] Sent: Tuesday, May 06, 2003 1:39 PM To: 'Mark Kelsay' Cc: security-basics Subject: RE: block internet at two workstations I hope this isn't a repeat message... my outlook is acting up... Yeah, the netgear box is set up for DHCP... If I set static IPs, I don't want a smart network user to be able to reset the default gateway My ISP guys said: Most routers will allow you to filter by Mac address. i.e. Use winipcfg or ipconfig to get the Mac address of the network card in the work stations you wish to block. Then add them into the filtered list. This will allow them the freedom of the inside network but will not be able to surf outside. That sounds good. Not sure if the netgear FVS 318 will do that though -----Original Message----- From: Mark Kelsay [mailto:MKelsay () switchboard com] Sent: Tuesday, May 06, 2003 2:17 PM To: 'Tim Laureska' Subject: RE: block internet at two workstations Oh its there. I would think the netgear is dolling out dhcp info to the workstations. setup the workstations in question with static settings and omit the default gateway entry. Mark -----Original Message----- From: Tim Laureska [mailto:hometeam () goeaston net] Sent: Tuesday, May 06, 2003 2:27 PM To: 'Mark Kelsay' Subject: RE: block internet at two workstations With the ISP I'm using and the netgear FVS 318 box, I don't need a default gateway entered at all on the stations -----Original Message----- From: Mark Kelsay [mailto:MKelsay () switchboard com] Sent: Tuesday, May 06, 2003 2:10 PM To: 'Tim Laureska' Subject: RE: block internet at two workstations remove the default gateway entry on the workstations TCP/IP settings. Mark -----Original Message----- From: Tim Laureska [mailto:hometeam () goeaston net] Sent: Tuesday, May 06, 2003 7:01 AM To: security-basics Subject: block internet at two workstations I'm working with a small (10 user network) with a netgear FVS318 firewall, accessing the internet via cable modem.. The client wants to block internet access at two workstations. I don't see anything available within the firewall documentation/configuration that would address this. What is the best and easiest way to do this ...easy and best may be a contradiction :-) TIA Tim ------------------------------------------------------------------------ --- FastTrain has your solution for a great CISSP Boot Camp. The industry's most recognized corporate security certification track, provides a comprehensive prospectus based upon the core principle concepts of security. This ALL INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization of pertinent security tools. For a limited time you can enter for a chance to win one of the latest technological innovations, the SEGWAY HT. Log onto http://www.securityfocus.com/FastTrain-security-basics ------------------------------------------------------------------------ ---- --------------------------------------------------------------------------- FastTrain has your solution for a great CISSP Boot Camp. The industry's most recognized corporate security certification track, provides a comprehensive prospectus based upon the core principle concepts of security. This ALL INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization of pertinent security tools. For a limited time you can enter for a chance to win one of the latest technological innovations, the SEGWAY HT. Log onto http://www.securityfocus.com/FastTrain-security-basics ---------------------------------------------------------------------------- --------------------------------------------------------------------------- FastTrain has your solution for a great CISSP Boot Camp. The industry's most recognized corporate security certification track, provides a comprehensive prospectus based upon the core principle concepts of security. This ALL INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization of pertinent security tools. For a limited time you can enter for a chance to win one of the latest technological innovations, the SEGWAY HT. Log onto http://www.securityfocus.com/FastTrain-security-basics ---------------------------------------------------------------------------- --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.476 / Virus Database: 273 - Release Date: 4/24/2003 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.476 / Virus Database: 273 - Release Date: 4/24/2003 --------------------------------------------------------------------------- FastTrain has your solution for a great CISSP Boot Camp. The industry's most recognized corporate security certification track, provides a comprehensive prospectus based upon the core principle concepts of security. This ALL INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization of pertinent security tools. For a limited time you can enter for a chance to win one of the latest technological innovations, the SEGWAY HT. Log onto http://www.securityfocus.com/FastTrain-security-basics ----------------------------------------------------------------------------
Current thread:
- RE: block internet at two workstations, (continued)
- RE: block internet at two workstations Tim Laureska (May 07)
- RE: block internet at two workstations Dominik Scigalski (May 07)
- RE: block internet at two workstations Jacob (May 07)
- RE: block internet at two workstations Nina V. Levitin (May 07)
- RE: block internet at two workstations Kevin Saenz (May 08)
- Re: block internet at two workstations Jacob (May 07)
- RE: block internet at two workstations Tim Laureska (May 07)
- RE: block internet at two workstations Xueyan Liu (May 07)
- RE: block internet at two workstations - Answer jamesworld (May 09)
- RE: block internet at two workstations Lucas Zaichkowsky (May 07)
- RE: block internet at two workstations Peter McLernon (May 08)
- Re: FW: block internet at two workstations Lee Burleson (May 07)
- Re: FW: block internet at two workstations Jerry M. Howell II (May 08)
- RE: FW: block internet at two workstations [security-basics-return-19403-danf=clearnetwork.com () securityfocus com in Pass-Through List] Tim Laureska (May 08)
- RE: block internet at two workstations Allan Schon (May 07)
- RE: block internet at two workstations Naman Latif (May 07)
- RE: block internet at two workstations Dozal, Tim (May 08)
- RE: block internet at two workstations Nina V. Levitin (May 08)
- RE: block internet at two workstations Kevin Saenz (May 08)
- Re: block Internet at two workstations jamesworld (May 09)
- Re: block Internet at two workstations Chris R (May 13)
(Thread continues...)
- RE: block internet at two workstations Tim Laureska (May 07)