Security Basics mailing list archives
Re: block Internet at two workstations
From: Chris R <admin () securityindex net>
Date: 12 May 2003 00:45:29 -0000
In-Reply-To: <5.2.1.1.0.20030509135314.01c25500 () wheresmymailserver com> Well i looked up this 'netgear FVS318', its a pretty decent box. There should be some sort of MAC filtering somewhere within the hardware. Add the MAC addresses of the two machines you want blocked and should be the end of it. Even the most basic of basic broadband routers have this feature. You should check again, if you dont see it then you could always do what the fella below said and remove the gateways from those 2 clients and apply some security policies that do not allow them to change their TCP/IP settings. chris
Received: (qmail 31290 invoked from network); 9 May 2003 18:57:44 -0000 Received: from outgoing3.securityfocus.com (205.206.231.27) by mail.securityfocus.com with SMTP; 9 May 2003 18:57:44 -0000 Received: from lists.securityfocus.com (lists.securityfocus.com
[205.206.231.19])
by outgoing3.securityfocus.com (Postfix) with QMQP
id 07333A3140; Fri, 9 May 2003 13:04:27 -0600 (MDT)
Mailing-List: contact security-basics-help () securityfocus com; run by ezmlm
Precedence: bulk
List-Id: <security-basics.list-id.securityfocus.com>
List-Post: <mailto:security-basics () securityfocus com>
List-Help: <mailto:security-basics-help () securityfocus com>
List-Unsubscribe: <mailto:security-basics-unsubscribe () securityfocus com>
List-Subscribe: <mailto:security-basics-subscribe () securityfocus com>
Delivered-To: mailing list security-basics () securityfocus com
Delivered-To: moderator for security-basics () securityfocus com
Received: (qmail 23241 invoked from network); 9 May 2003 18:33:40 -0000
Message-Id: <5.2.1.1.0.20030509135314.01c25500 () wheresmymailserver com>
X-Sender: (Unverified)
X-Mailer: QUALCOMM Windows Eudora Version 5.2.1
Date: Fri, 09 May 2003 13:57:38 -0500
To: "Remington Winters" <fyreguy () rivetgeek com>
From: jamesworld () intelligencia com
Subject: Re: block Internet at two workstations
Cc: "Lucas Zaichkowsky" <Lucas () dnsys com>,
"Tim Laureska" <hometeam () goeaston net>,
"security-basics" <security-basics () securityfocus com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
X-OriginalArrivalTime: 09 May 2003 18:58:12.0437 (UTC) FILETIME=
[F0822850:01C3165C]
will not work Any time you append anything except a space (which would break any URL) there is no match. So.... http:// and http:// www.yahoo.com are equal. Both will go nowhere http:// www.yahoo.com is different that http://www.yahoo.com The later will get you to yahoo and the former nowhere due to the space. At 15:11 5/7/2003, Remington Winters wrote:Havent tested this but you might try adding a line to the host file that says http:// 127.0.0.1 In theory that should direct them to their own machine for any http
query in
a browser. Just make sure the user doesnt have access to edit that file. Or, you could simply remove IE.... ----- Original Message ----- From: "Lucas Zaichkowsky" <Lucas () dnsys com> To: "Tim Laureska" <hometeam () goeaston net>; "security-basics" <security-basics () securityfocus com> Sent: Tuesday, May 06, 2003 11:16 AM Subject: RE: block internet at two workstationsAssuming the users know nothing about networking, simply remove thedefaultgateway from those two workstations. -Lucas -----Original Message----- From: Tim Laureska [mailto:hometeam () goeaston net] Sent: Tuesday, May 06, 2003 6:01 AM To: security-basics Subject: block internet at two workstations I'm working with a small (10 user network) with a netgear FVS318 firewall, accessing the internet via cable modem.. The client wants to block internet access at two workstations. I don't see anything available within the firewall documentation/configuration that would address this. What is the best and easiest way to do this ...easy and best may be a contradiction :-) TIA Tim ----------------------------------------------------------------------
----
-FastTrain has your solution for a great CISSP Boot Camp. The
industry's
mostrecognized corporate security certification track, provides acomprehensiveprospectus based upon the core principle concepts of security. This
ALL
INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization of pertinent security tools. For a limited time you can enter for a
chance
to win one of the latest technological innovations, the SEGWAY HT. Log onto http://www.securityfocus.com/FastTrain-security-basics ----------------------------------------------------------------------
----
------------------------------------------------------------------------
----
-FastTrain has your solution for a great CISSP Boot Camp. The
industry's
mostrecognized corporate security certification track, provides acomprehensiveprospectus based upon the core principle concepts of security. This
ALL
INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilizationof pertinent security tools. For a limited time you can enter for a
chance
to win one of the latest technological innovations, the SEGWAY HT. Log onto http://www.securityfocus.com/FastTrain-security-basics ----------------------------------------------------------------------
----
---------------------------------------------------------------------------
--
FastTrain has your solution for a great CISSP Boot Camp. The industry's
most
recognized corporate security certification track, provides a
comprehensive
prospectus based upon the core principle concepts of security. This ALL INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization of pertinent security tools. For a limited time you can enter for a
chance
to win one of the latest technological innovations, the SEGWAY HT. Log onto http://www.securityfocus.com/FastTrain-security-basics -------------------------------------------------------------------------
---
--------------------------------------------------------------------------
-
FastTrain has your solution for a great CISSP Boot Camp. The industry's
most
recognized corporate security certification track, provides a
comprehensive
prospectus based upon the core principle concepts of security. This ALL
INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization
of pertinent security tools. For a limited time you can enter for a
chance
to win one of the latest technological innovations, the SEGWAY HT. Log onto http://www.securityfocus.com/FastTrain-security-basics --------------------------------------------------------------------------
--
--------------------------------------------------------------------------- Thinking About Security Training? You Can't Afford Not To! Vigilar's industry leading curriculum includes: Security +, Check Point, Hacking & Assessment, Cisco Security, Wireless Security & more! Register Now! --UP TO 30% off classes in select cities-- http://www.securityfocus.com/Vigilar-security-basics ----------------------------------------------------------------------------
Current thread:
- RE: block internet at two workstations, (continued)
- RE: block internet at two workstations Peter McLernon (May 08)
- Re: FW: block internet at two workstations Lee Burleson (May 07)
- Re: FW: block internet at two workstations Jerry M. Howell II (May 08)
- RE: FW: block internet at two workstations [security-basics-return-19403-danf=clearnetwork.com () securityfocus com in Pass-Through List] Tim Laureska (May 08)
- RE: block internet at two workstations Allan Schon (May 07)
- RE: block internet at two workstations Naman Latif (May 07)
- RE: block internet at two workstations Dozal, Tim (May 08)
- RE: block internet at two workstations Nina V. Levitin (May 08)
- RE: block internet at two workstations Kevin Saenz (May 08)
- Re: block Internet at two workstations jamesworld (May 09)
- Re: block Internet at two workstations Chris R (May 13)
- Re: block internet at two workstations Alaric Darconville (May 13)