-
January 12th, 2007, 08:46 AM
#1
Internet blocking Question/Allowing one site only
I am putting in a new HR/Payroll system for work that will allow employees to clock in from their pc through a web address. The web address is being hosted by the company providing the product so it is not on the intranet. This is not an issue for most of our employees, but we do block all internet traffic on the shop floor pc's. We do this by disabling the window where you enter the proxy addresses, grays out the option actually. But now I need these pc's to go to this one single address so they can clock in. There must be a way to do this I would think. Anyone else had a issue like this? I will note that I do not have access to any of our switches or routers, so I cannot do anything fancy there. I am researching GP to see if that can do it. Thanks for any help...
-
January 12th, 2007, 04:26 PM
#2
Registered User
Wild off the cuff idea ... set the "Default Gateway" address to the IP address of the service you need to clock into, then put that address into DNS as a Host address record. I'd bet that would do it.
-
January 15th, 2007, 04:08 PM
#3
Another off-the-cuff idea: in the windows host file, set the IP address of the site that you need them to access, then set the DNS to something that will return garbage information. That way - unless they know the IP address of google, they should be stuck.
-
January 20th, 2007, 10:28 PM
#4
Registered User
I agree - manually entering the DNS information should work, but as an easier alternative, why not set up a proxy server/app such as WinProxy and just block everything except the site(s) allowed?
Last edited by Poseidon; January 20th, 2007 at 10:31 PM.
The early bird may get the worm; but the second mouse gets the cheese!
-
January 20th, 2007, 11:37 PM
#5
A group policy can do pretty well what you want. Set IE6 (ie7 doesnt seem to allow it)to open in kiosk mode then if the user has no permissions to switch it from kiosk mode they will open IE and get the home page which you specify first.
-
January 22nd, 2007, 06:48 PM
#6
If it is using a local address (example: http://servername/application/Login/Login.asp) then all you need to do is set the proxy servers to allow local (LAN) addresses and "block" all out-of-Network traffic and it'll work fine. We needed a similar setup here at the office and that's how I did it.
To further the security, I also configured the group policies in AD to disallow access to system settings so that users wouldn't be able to change their network info or network connection settings and what-not.
Of course, this is assuming your application uses .NET and IIS (I think that is a safe assumption).
Similar Threads
-
By TechZ in forum Tech News
Replies: 0
Last Post: July 8th, 2006, 06:43 AM
-
By TechZ in forum Tech Lounge & Tales
Replies: 0
Last Post: April 7th, 2006, 03:10 PM
-
By pga in forum Tech-To-Tech
Replies: 11
Last Post: November 11th, 2000, 04:10 PM
-
By GIG-O-Tech in forum Tech-To-Tech
Replies: 4
Last Post: October 3rd, 2000, 08:57 AM
-
By Jared Job in forum Windows 95/98/98SE/ME
Replies: 20
Last Post: October 2nd, 2000, 05:39 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Bookmarks