Sir, in my office around 10 client computer connected with a domain server. i want to prevent to access internet browsing on any one or two computer. When i make change in the TCP/IP properties the user correct it personally and access the internet.
Please provide me any firewall software details that's install on any computer or server and set the specific IP to prevent access the Internet. like i want to block to access internet on 192.168.16.111 or 192.168.16.112 but other computers are working properly.
Please solve the issue soon.
 | Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years. Thanks, CNET Support |
General discussion
Block Internet Acess on Specific Computer
Discussion is locked
6 Posts
- Collapse
- Collapse -
If that user continuously changes those settings back, against company policy, then this becomes a disciplinary problem.
What type of account does this user have? If they had a Limited User account and not an Admin capable account, then preventing that may be easier.
Mark
- Collapse -
Sir, the user account is as "Domain Admin" permission. so, they can edit the TCP/IP properties and the owner of the company can not change the same. because all user has permission to install or uninstall some software or drivers and some files that available on server and that access through network place. If i change the IP the network place also not accessible.
except the above any other way to block the specific IP or Computer to access the internet.
- Collapse -
is to do it on the device that is used to connect to Internet. But you didn't yet tell what that is, although I asked above.
Kees
- Collapse -
And why is that? Why would you have more than one domain admin level account? You don't need to give someone domain admin level access to be able to install/uninstall programs, and that is going to severely restrict your available options.
Still, I think Mark has it spot on that if this is some kind of unauthorized access, disable the account and pass the matter over to HR and/or your boss. Or if this is a small operation, the head of the company. Let them talk to the person in question and explain matters, then decide if any additional action is required.
It also clearly seems that you're in over your head with the administration of this network, so it might be worth it to hire on someone else or bring in a consultant to set everything up, document it for you, and you can be involved to kind of learn the system from the consultant.
- Collapse -
You can do little if the user can change anything on the machines. If the user have administrator access they can undo anything you can put in.
Your best option would be to load a third party firewall software something like symantec endpoint. You could then let the user have full access to the machine but no access to the firewall settings.
Most other methods will not work if the users are hacker types. You cannot trust ip, mac or anything so even restrictions at the router will not work. You would have to put some form of authentication in the internet router so that a user must login to gain access. Still this is easily defeated if a user who has access works with a user who does not to gain access.
CNET Forums
Operating Systems
Software
Electronics & Gadgets
Hardware
Tablets & Mobile Devices
General Help
Roadshow Autos
Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic