Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Rhinorhino on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Policy to block internet access, yet allow LAN access ? 1

Status
Not open for further replies.
pvanos

pvanos

MIS
Joined
Jun 6, 2002
Messages
73
Location
BE
Can I block internet access using a GPO, yet still allowing the workstations in the OU to access their homedirectories and other shared resources via LAN ?
What settings do I need to create/modify ?
 
Sort by date Sort by votes
I'm not sure how to do that exactly. HOWEVER, you will always prefer to control Internet access via a firewall or router, which would require that you know how to do that, or speak to the people (usually the "networking guys")who can do that for you.

It's just seems like a best practice to control Internet access in this manner. Good Luck.

Carpe diem, procrastination is the thief of time...
 
Upvote 0 Downvote
Now THAT would have been nice... No, just a router with NAT. No proxy nor firewall :-(
 
Upvote 0 Downvote
OK, this will be sneaky but should work. Create two policies. One for people who will get Internet and one for people only allowed intranet.

Since you DON'T have a firewall or proxy, we are going to fake out the system. Make up a phony proxy name and configure it to be pushed down to all of your intranet only users. If they try to go out on the net, they will get an error because the proxy can't be contacted. Make sure you lock them out of changing the proxy settings.

For your Internet allowed people, I would lock them out of the Internet Options settigns too even though you are not configuring those settings for them. Lock down anything else specific to Internet users in this policy.
 
Upvote 0 Downvote
If you got a router pop over to the routers forum with more info.

Ta

AJ

===

Fatman Superstar (Andrew James)

CCNA,
(CCNA Cisco Academy Instructor Trained)
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

tscstl
  • Locked
  • Question Question
access to local folder
Replies
1
Views
561
hairlessupportmonkey
hairlessupportmonkey
nukeinfer
  • Locked
  • Question Question
Internet restrictions for isolated PCs in the Network
Replies
1
Views
904
mangentle
mangentle
DTGMI
  • Locked
  • Question Question
WIN 10 Pro PC & Adding back to our Network
Replies
0
Views
797
DTGMI
DTGMI
microsGuy16
  • Locked
  • Question Question
Can not copy files to Mapped drive
Replies
0
Views
1K
microsGuy16
microsGuy16
StevenFromSouth
  • Locked
  • Question Question
VPN Connects but cannot access remote network computers or folders
Replies
1
Views
457
StevenFromSouth
StevenFromSouth

Part and Inventory Search

Sponsor

Back
Top