Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Question

Setup a home file/Media server with no internet access

Jan 21, 2015 4:32AM PST

Hi,
I have a home network with a wifi router connected to an Adsl modem. I try to setup a new server (macbook pro with Yosemite as OS) which will be only used as file and media server for my local network.

I DO NOT want this server to have access to out of my local network and no one out of my local network could access it. in other words, it has to be isolated as a local server with no incoming/outgoing access from out of my local network.

my local network dhcp rang is 192.168.10.10 to 192.168.10.20 and I have a firewall on the router and one on this server (little snitch).

I have no idea how to do this, how to configure IPs out of my local network in the firewalls etc...

I would appreciate if anyone can help me (I have a limited knowledge about networking)
Many thanks
Bye

Discussion is locked

- Collapse -
Answer
Re: network
Jan 21, 2015 4:40AM PST

I'd keep it simple.

It's a server, so nobody needs to login to it, except you as system manager in exceptional cases. So actually, if you don't run programs that want to connect to Internet, there's no access.
And since your normally isn't accessible from outside (thanks to your router) the same is true for that Macbook.

So I see no need for anything special. Do you?

Kees

- Collapse -
thank you but....
Jan 21, 2015 4:50AM PST

thank you for the fast answer,
I see what you are saying... but this server can be accessed by other family member and they can setup other applications with out my awareness... and I do not want to manually deny each access request (in or out) in the server firewall....
cheers

- Collapse -
Re: other family members
Jan 22, 2015 4:56AM PST

That's why Windows has the difference between admin, user and guests account, and passwords to prohibit logins. Doesn't a Mac have that? Then it's not a good OS for a server.

Kees

- Collapse -
Answer
Cheat.
Jan 21, 2015 4:45AM PST

Set the network mask to 0.0.0.0 That way, well, you are a network guru, you can see what that does!
bob

- Collapse -
Re: 0.0.0.0.
Jan 21, 2015 5:05AM PST

Does that still allow access by and to all devices in the LAN?

Kees

- Collapse -
Yes.
Jan 21, 2015 5:15AM PST

It means that the LAN contains all IPs from 0.0.0.0 to 255.255.255.255 so not one packet is sent to the gateway.