Answer the question
In order to leave comments, you need to log in
A
A
AntohaRomaha2017-04-28 11:16:40
AntohaRomaha, 2017-04-28 11:16:40
How to deny access to all sites except those allowed WITHOUT a gateway, proxy, etc. - a centralized solution?
Hello.
There are several computers - they go to the LAN through a serious server on * nix, it is the gateway for them. From it via dhcp get IP and access to the Internet. I will not climb into this server - to raise a squid there, etc. - this is unacceptable.
It is necessary to limit computers access to all sites, except for those allowed, using win7 tools - it is desirable that one of the computers has centralized settings. That is - today I decided to allow all 10 users to access vk.com - added softins to the server version - and all computers automatically pulled up its settings. Etc. The policy is "everything is forbidden except".
that is, the hosts file does not roll the campaign. Prompt free simple and fast solution?
Thank you.
7 answer(s)
@AntohaRomaha
@spyk3r
@res2001
@cssman
@mr_jok
A
AntohaRomaha, 2017-04-28 @AntohaRomaha
I tried Internet Censor - but even allowed sites started to slow down terribly. Although it seems that Google Yandex added - like suddenly adwords and metrics interfere with loading - but still. Disable - sites fly. I cut it - wildly slows down. But just do everything just out there in the settings - but you need to allow something in addition to the allowed sites ... In general - in the search.
UPD: In order not to slow down sites via the Internet, the Censor did so. In Chrome, in the developer console, on the sources tab - and everything that is loaded, all api, google fonts, and so on - I add everything to the white list. It turned out to load one site - it allowed somewhere around 15 resources :))
You also need to look in the same console for errors - which js cannot be loaded from external sources - they are also in the white list.
The site began to load quickly and clearly.
The only task left is to find out where exactly this Censor keeps the white list. So far I haven't found it in the registry and files...
To update this list using vbs or bat on each machine from the grid.
And so - thank you all!
S
spyk3r, 2017-04-28 @spyk3r
On one of the computers, set a proxy and configure clients for this proxy. and already on the proxy to steer the rules.
R
res2001, 2017-04-28 @res2001
Customize the local Windows firewall to suit your needs on each computer.
You can write a script that will configure the firewall using netsh or power shell. And run this script remotely on each computer - at least some kind of automation.
Some corporate antiviruses have their own firewall, which can be centrally managed through the antivirus console, but I suspect that this is also not your option.
C
cssman, 2017-04-28 @cssman
there is a free windows firewall. if you don't like it, there are a lot of other host programs.
but to be honest, the solution is so-so, you need a network gateway with translation, filtering and all things.
M
Mikhail Lyalin, 2017-04-28 @mr_jok
"through a serious server on *nix, it is a gateway for them" = only on it everything can be done, look for a specialist
Similar questions
X
4
A
ASiD2017-02-03 09:34:59
How to prevent changes to update settings via Kaspersky Security Center?
1Reply
M
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question