restrict Internet Browsing
How to restrict employees from browsing while they can still access the mails through outlook?
Software/Hardware used:
Software/Hardware used:
ASKED:
May 15, 2009 4:38 PM
UPDATED:
May 26, 2009 8:26 PM
Answer Wiki:
Change the proxy server to 127.0.0.1 on the Internet settings, Connection, LAN - this is for IE. You can use group policy then to disable this tab for general user population. This is very effective for machines where users do not have the ability to install software or make system changes.
=====================
I recomend.. providing limited access over tcp ports on ur border device,.. for mails through outlook u would require SMTP (port 25 enabled) pop 3 (110 tcp) DNS 53(TCP/UDP) .. remember by doing this u will also have ping disabled.. so u cant ping anythign..
To see all answers submitted to the Answer Wiki: View Answer History.
If your Internet router is a Cisco, just put an access list on the outbound traffic, that allows what you want them to be able to do, and denies what you don’t want them to do.
However, that usually prevents some legitimate business uses of the Internet, as does any hard configured rule like this. A better solution maybe, is to have a policy in place, that says you must not do this during business hours, and also monitor to see who is still violating the rules. Find out who they are, and then you go and have a quiet word with them, and explain what life might be like with no job !
You can also use local or group policy or third-party software to prevent the browser executable from running as I outlined here.
The following site shows how to create local or group policies to do just that.
Check the “Related Articles” section at the bottom of this page to see other versions.
I have used this technique before and it works.