my current setup :
3 com switch
| \
| --Server (win2k3)
various os 8 pc's all running windows

what i would like to do is to have the server to issue the ip addresses, and grant or deny webpages...
i have tried vairous attempts to do this to no avail, i am using open DNS, and it is not that user friendly, and sumwhat slow.

would i need 2 nic's in the server?
or what else could i do?


Recommended Answers

All 6 Replies

There are several ways to do this. The easiest way is to have a router that includes a URL filtering service. That way, you control which pages you allow/deny at the exit point of your network. However, if you prefer to do this function with a server, you would need to load proxy software or other filtering service on that server. In this example, if you run proxy services, you can use one NIC. However, you would have to block all outbound traffic on the firewall for every node except the proxy server. Then force your clients to use the proxy server for internet access.

Alternatively, you could set up the server with two NICs with RRAS enabled. Then the workstations would use the server as their default gateway. Run the proxy/filtering software in the same manner. This method does not require you to configure your clients to use a proxy server. The proxy server just intercepts the traffic on the way out.

Again, always keep things as simple as possible. i would suggest hte interner router with URL filtering capabilities. It will be much faster than a dedicated server, and much less complicated, and cost less (no Windows license required, no proxy software needed, etc...)

My suggestion:

Turn off DHCP and DNS on the router.

On the server, enable DHCP and DNS services.

Configure DHCP with your ip scope assigning the router ip, dns ip (make this the 2k3 server), and wins options 44 2k3ip and 46 0x8 for hybrid.

Configure the DNS with a forwarder to the open DNS servers.

Open DNS servers let you sign up to control dns lookups for free. You can cut off certain web pages by 'turning off' dns resolution for those pages. the local DNS server will cache results and help speed up dns lookups.

thanks for te reply guys, I am looking to give some end users full web access, and others limited web access.
I have looked into proxy but i am totaly confused by this as i am a system builder and not a 'netty'.

would you be able to point me in the right direction?

Thanks guys

CimmerianX - i am unable to turn off DNS on the route, i have only two options,
Domain Name Server (DNS) Address
Get Automatically From ISP ()
Use These DNS Servers () [___.___.___.__] & [___.___.___.__]

I have managed to get it working with windows server 2000, using my wifi to connect to router / modem on and using the LAN, this is just untill my network cards i have ordered have arrive. But the internet connection is not live even when the wifi connection is connected untill i disable the lan, then re-enable it. I dont know if there is an issue with my settings or this is just because i am using wifi.

also i know this is also another problem, i am able to set static IP addresses on the client pc's, but i am unable to set them to auto dhcp...


you can block with a dns server, but it's an all or nothing situation. create a new dns zone and just put for example: and it will forward those requests to your server. At my office i use a high end firewall and filter by IP addresses, but not a cheap solution with what you already have.

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.