Limiting Internet Access Through GP

jamesgwilson · 07-14-2008, 08:39 AM

I have come across an issue. We have a class of about 18 computers, and what we are looking at having done is limiting internet access to just 8 sites that are needed. but there is another issue, is that there is a portal created through citrix, where they are accessing the internet. We want to stop access through this as well...any ideas???

**af3** · 07-16-2008, 12:55 PM

There are third party software solutions available for such an operation. Do you want to restrict access client-side, or server-side?

You could run a proxy server, or a dns server and redirect all restricted requests to a local page or just to a blank white screen?

A proxy server would use more bandwidth, but you could use caching to speed things up and save bandwidth.

A DNS server approach could be bypassed if the user had local admin over the PC they were using in that they can access the IP configuration section of the internet connection.

Allowing 8 sites is a lot easier than restricting billions of sites.

Restrict students to limited or power user privelages so they can't install something like Citrix.

They are always going to find a way around it, but if you nail things down server-side at the protocol level, you should see minimal minimal leakage for lack of better wording...

Are you trying to stop infections, or just prevent non class related browsing?

07-14-2008, 08:39 AM	#1 (permalink)
jamesgwilson Registered User Join Date: Jul 2008 Posts: 1 OS: xpsp2	Limiting Internet Access Through GP I have come across an issue. We have a class of about 18 computers, and what we are looking at having done is limiting internet access to just 8 sites that are needed. but there is another issue, is that there is a portal created through citrix, where they are accessing the internet. We want to stop access through this as well...any ideas???

07-16-2008, 12:55 PM	#2 (permalink)
af3 TSF Enthusiast Join Date: Jun 2008 Location: USA Posts: 757 OS: Windows XP SP3 My System	Re: Limiting Internet Access Through GP There are third party software solutions available for such an operation. Do you want to restrict access client-side, or server-side? You could run a proxy server, or a dns server and redirect all restricted requests to a local page or just to a blank white screen? A proxy server would use more bandwidth, but you could use caching to speed things up and save bandwidth. A DNS server approach could be bypassed if the user had local admin over the PC they were using in that they can access the IP configuration section of the internet connection. Allowing 8 sites is a lot easier than restricting billions of sites. Restrict students to limited or power user privelages so they can't install something like Citrix. They are always going to find a way around it, but if you nail things down server-side at the protocol level, you should see minimal minimal leakage for lack of better wording... Are you trying to stop infections, or just prevent non class related browsing? __________________ You are currently using 0 MB (0%) of your 7171 MB, what's wrong with you?