Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Question

Local Policy & PC Monitoring with firewall

Mar 23, 2015 6:10AM PDT

Hey! I have a network of about 30 terminals spread over multiple cities with each terminal connected to internet via broadband connections. I need to ensure the following, preferably through local policy implementation or an open source tool:
a. Only specific websites (about 10 URLs) are allowed to be accessed on them.
b. No additional software installations can be made.
c. If needed, they can be taken on remote access.
d. Reports of policy violations can be sent to an email or a server.

Any advice on the type of setup I need to do?

Discussion is locked

- Collapse -
Answer
Re: setup
Mar 23, 2015 6:45AM PDT

Assuming this is for a company, I wouldn't take any (security) risks and find an experienced network administrator to set this up for you.

Kees

- Collapse -
No need for a network admin
Mar 23, 2015 7:22AM PDT

This is actually my own project within the company. I can handle most of these things but just wanted to know what's the best practice out there. Happy

- Collapse -
Answer
b. DOA.
Mar 23, 2015 6:47AM PDT

I'm going to go with DOA regardless of OS today. I've yet to see any OS come with such without me adding code, scripts and maybe an app.

It's strange to want all this then put your feet into concrete and cut off the air supply.
Bob

- Collapse -
Don't know DOA
Mar 23, 2015 7:29AM PDT

Sorry but I am not aware of DOA. Meanwhile, my terminals are all running on windows 7 pro...licensed versions.

Didn't quite get your second line.

- Collapse -
For the restrictions given, dead on arrival.
Mar 23, 2015 7:41AM PDT

Your specs preclude the usual solutions.

Remember I've seen such before and they usually implode later or figure out that such restrictions mean we can't implement know solutions. Sometimes they mandate that we can't use scripting or in house apps!

It's best to arrange for a heart to heart and straighten this out up front.

Later you claim "I know this can be managed by local policy" so why the questions here? You already solved it?
Bob

- Collapse -
Answer
Can you explain ...
Mar 23, 2015 7:15AM PDT

the apparent contradiction between "preferably open source tool" and "no software installation"? Most tools, either paid or open source, are installed, aren't they.

Kees

- Collapse -
explanation
Mar 23, 2015 7:27AM PDT

Sorry for the confusion. What I meant was:
a. "software installation": I mean no other installation after what I have installed. e.g. I will be providing them Open Office but I don't them to install MS Office on their own. I know this can be managed by local policy or simply my limiting user type but like I said....wanted to know the best practices out there.
b. "open source": A tool or set of open source tools for getting this job done.