×
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Contact US

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

Internet restrictions for isolated PCs in the Network

Internet restrictions for isolated PCs in the Network

Internet restrictions for isolated PCs in the Network

(OP)
Can somebody guide me about below configurations is possible using windows server 2008 R2 Group Policy methodology.

Restrict to access USB devices for data transfer
Restrict to access inbound and out bound internet access
all PCs is in the Active directory in the network. selected PCs need to allow for the Internet and USB data sharing.

RE: Internet restrictions for isolated PCs in the Network

Yes, it is possible to configure the following restrictions using Windows Server 2008 R2 Group Policy:

Restrict access to USB devices for data transfer:

Create a Group Policy Object (GPO) and navigate to "Computer Configuration" > "Policies" > "Administrative Templates" > "System" > "Removable Storage Access."
Enable the policy "Removable Disks: Deny write access" to prevent data transfer to USB devices.
Apply the GPO to the desired organizational units (OU) containing the target computers.
Restrict access to inbound and outbound internet access:

Create a GPO and navigate to "Computer Configuration" > "Policies" > "Windows Settings" > "Security Settings" > "Windows Firewall with Advanced Security."
Define inbound and outbound rules to block internet access based on ports, IP addresses, or other criteria.
Apply the GPO to the desired OUs containing the target computers.
Allow selected PCs for internet and USB data sharing:

Create a separate OU for the selected PCs that need exceptions.
Apply the appropriate GPOs described above for USB and internet restrictions to the main OU containing all PCs, except for the exceptions.
Create a new GPO for the exception PCs and configure it to allow USB access and internet access.
Apply this exception GPO to the OU containing the exception PCs.
Ensure that the GPOs are linked correctly to the appropriate OUs and that Group Policy updates are applied to the client computers for the changes to take effect.

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login


Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close