What are you using for a firewall? Do you have many of these cases? Just
blocking ports 80, 8080 and such by individual address will work if the
users have a single computer should do. If you use DHCP you can still
reserve a single address for that individual in your DHCP server and do the
same. This gets laborious if there are many users to block though. If you
have many subnets, you could reserve blocks of addresses (reserved in your
DHCP server and assign to those that are to be blocked and then block them
all at the firewall for http like ports (80, 81, 8080).
Gary Baribault
At 04:52 PM 1/12/2000 +1100, you wrote:
>Hi, all. I've been lurking on the list for a while, and it's time to
>decloak.
>
>My question is the inverse of the content filtering issues. My organisation
>doesn't necessarily want to block everyone from accessing any internet site,
>becuase this carries with it a large administrative overhead. Porn sites
>move, get new IP addresses, there are new sites containing inappropriate
>material opening all the time and so on.
>
>Instead, we want to educate our users, have an Internet Usage Policy, and a
>procedure whereby individuals who breach those guidelines receive
>counselling. We also want to institute a method of preventing those
>individuals from accessing the Internet, but retain the ability to send and
>receive Internet e-mail and access the organisation's Intranet.
>
>Anyone have any ideas on how we might accommplish this?
>
>Cheers
>
>Peter Leitch <[EMAIL PROTECTED]>
>Project Coordinator, Security & ADE
>IMU-DVA
>Phone: (02) 6289 1179 Mobile: 0412 818 825
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
PGP signature
