Networks

Question

Gravatar
Locked

Block Internet Access

By murkunde ·
i have heard that a website or a set of web address can be blocked by configuring the DNS server as well as host file..

can anyone tell me how to block the access to internet, with the help of DNS server..

i have heard that we shud make a list of users and specify tat list into DNS server...

can anyone help me with this????

This conversation is currently closed to new comments.

10 total posts (Page 1 of 1)  
+ Follow this Discussion ·
| Thread display: Collapse - | Expand +

All Answers

gravatar
Collapse -

firewall

by Nirvaeh In reply to Block Internet Access

a firewall can block access. If you run linux you can use iptables.

gravatar
Collapse -

thanks, but thats not wht i asked

by murkunde In reply to firewall

hey thanks for ur post, but i think u have only read the heading and replied my topic...

i know that 3rd party software like proxy server and firewall rules can be defined and block the access to certain pages.

but i want to find out, instead of using the 3rd party software, are there any such rules which if defined in DNS server can block the access to ineternet...

Like right now, our network is such tat: our broad band cable is plugged directly into hub and the users and free to access any site.. but if the server system is off then none are able to connnect to internet...

so does any1 know more abt configuring the dns server such way to block the internet access...

please do share / reply...

gravatar
Collapse -

misusing vocabulary a bit

by Absolutely In reply to Block Internet Access

It sounds like you've been told about blocking access to certain URLs using the domain name resolution parameters, specified in the hosts file. I've done this and it works by defining certain web pages as 'hosted' on your local loopback interface, 127.0.0.1

gravatar
Collapse -

wow

by murkunde In reply to misusing vocabulary a bit

can u plz brief me more on how to do thatt??

gravatar
Collapse -

the file is called 'host'.

by Absolutely In reply to wow

C:\WINDOWS\system32\drivers\etc\host

Look for the row beginning with '127.0.0.1', and add the websites you want to block below the word 'localhost'. It's important to LEAVE 'localhost' there - this defines your own machine as the location of your own machine, essentially, and should not be changed. Just add other websites on subsequent lines, and whenever a browser is instructed to visit one of them, it will look for the page content on your internal 'localhost', ie your own computer, not on the Internet. It isn't exactly a 'firewall' but it does allow you to block known-bad websites. A firewall is always a good idea, too, as it allows you to block bad traffic, even for sites that you don't know to be bad yet.

HTH

gravatar
Collapse -

Simple , yet effective!

by DaveDXB In reply to the file is called 'host' ...

I like it! thanks.

Good if you have very few computers. Then you can configure it on each. Else (firewall server)

gravatar
Collapse -

fine with small n/w but what if big network???

by murkunde In reply to Simple , yet effective!

fine with a small network of lees then 10 comp's nur if more then 10comps.. then its a headche...

can it be done with the help DNS server???

like blocking the users from access the certain domain, like for example to access:
orkut.com account --> u have to block the google.com\accounts...

so similar way, is ther any way to configure the dns server so tat i can block my users from accessing the orkut.com network...

gravatar
Collapse -

Sure. Tell us about your network.

by Absolutely In reply to fine with small n/w but w ...

What type of hardware (& software, possibly)` are you using for DNS?

gravatar
Collapse -

H/w n s/w

by murkunde In reply to Sure. Tell us about your ...

H/w: Intel P4 2.4Ghz Dual Processor,
intel 845 GL Mother board,
1.25Gb RAM DDR,

S/w: Win 2003 Enterprise Edition
DNS, DHCP...

All the clients take the ip address's from the dhcp server.

will u able to help me???

gravatar
Collapse -

Start with something like this.

by Absolutely In reply to Sure. Tell us about your ...

http://www.examcram2.com/articles/article.asp?p=600983&rl=1

You should probably take & pass this test to be administrator of that system.

I found that using Google, by searching 'windows 2003 server host file'.

This may also be useful:

http://www.microsoft.com/technet/security/prodtech/windowsserver2003/w2003hg/sgch00.mspx

Back to Networks Forum
10 total posts (Page 1 of 1)  

Start or search

Related Forums