RE: block internet at two workstations

• Previous message: Trevor Cushen: "RE: rogue IP address"
• Maybe in reply to: Tim Laureska: "block internet at two workstations"
• Next in thread: Peter McLernon: "RE: block internet at two workstations"
• Reply: Peter McLernon: "RE: block internet at two workstations"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: Tim Laureska <hometeam@goeaston.net>
Date: Wed, 7 May 2003 10:59:06 -0500 

It looks like your router (Assuming it's firmware v1.1 or newer) only allows
you to block access to specific services, such as WWW.

You might want to just get a Linksys BEFSR11 or BEFSR41 and use that.
They're very inexpensive. You can set up a MAC filter so that their network
card is rejected by the router. Configure their TCP/IP manually, making
sure not to use an IP that the router is set up to hand out via DHCP.

-Lucas

-----Original Message-----
From: Tim Laureska [mailto:hometeam@goeaston.net]
Sent: Tuesday, May 06, 2003 1:39 PM
To: 'Mark Kelsay'
Cc: security-basics
Subject: RE: block internet at two workstations

I hope this isn't a repeat message... my outlook is acting up...

Yeah, the netgear box is set up for DHCP... If I set static IPs, I don't
want a smart network user to be able to reset the default gateway

My ISP guys said:
Most routers will allow you to filter by Mac address. i.e. Use winipcfg
or ipconfig to get the Mac address of the network card in the work
stations you wish to block. Then add them into the filtered list. This
will allow them the freedom of the inside network but will not be able
to surf outside.

That sounds good. Not sure if the netgear FVS 318 will do that though

-----Original Message-----
From: Mark Kelsay [mailto:MKelsay@switchboard.com]
Sent: Tuesday, May 06, 2003 2:17 PM
To: 'Tim Laureska'
Subject: RE: block internet at two workstations

Oh its there. I would think the netgear is dolling out dhcp info to the
workstations. setup the workstations in question with static settings
and
omit the default gateway entry.

Mark

-----Original Message-----
From: Tim Laureska [mailto:hometeam@goeaston.net]
Sent: Tuesday, May 06, 2003 2:27 PM
To: 'Mark Kelsay'
Subject: RE: block internet at two workstations

With the ISP I'm using and the netgear FVS 318 box, I don't need a
default gateway entered at all on the stations

-----Original Message-----
From: Mark Kelsay [mailto:MKelsay@switchboard.com]
Sent: Tuesday, May 06, 2003 2:10 PM
To: 'Tim Laureska'
Subject: RE: block internet at two workstations

remove the default gateway entry on the workstations TCP/IP settings.

Mark

-----Original Message-----
From: Tim Laureska [mailto:hometeam@goeaston.net]
Sent: Tuesday, May 06, 2003 7:01 AM
To: security-basics
Subject: block internet at two workstations

I'm working with a small (10 user network) with a netgear FVS318
firewall, accessing the internet via cable modem.. The client wants to
block internet access at two workstations. I don't see anything
available within the firewall documentation/configuration that would
address this. What is the best and easiest way to do this ...easy and
best may be a contradiction :-)
 
TIA
Tim

------------------------------------------------------------------------

---
FastTrain has your solution for a great CISSP Boot Camp. The industry's
most
recognized corporate security certification track, provides a
comprehensive 
prospectus based upon the core principle concepts of security. This ALL
INCLUSIVE curriculum utilizes lectures, case studies and true hands-on
utilization 
of pertinent security tools. For a limited time you can enter for a
chance 
to win one of the latest technological innovations, the SEGWAY HT. 
Log onto http://www.securityfocus.com/FastTrain-security-basics 
------------------------------------------------------------------------
----
---------------------------------------------------------------------------
FastTrain has your solution for a great CISSP Boot Camp. The industry's most
recognized corporate security certification track, provides a comprehensive 
prospectus based upon the core principle concepts of security. This ALL
INCLUSIVE curriculum utilizes lectures, case studies and true hands-on
utilization 
of pertinent security tools. For a limited time you can enter for a chance 
to win one of the latest technological innovations, the SEGWAY HT. 
Log onto http://www.securityfocus.com/FastTrain-security-basics 
----------------------------------------------------------------------------
---------------------------------------------------------------------------
FastTrain has your solution for a great CISSP Boot Camp. The industry's most 
recognized corporate security certification track, provides a comprehensive 
prospectus based upon the core principle concepts of security. This ALL INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization 
of pertinent security tools. For a limited time you can enter for a chance 
to win one of the latest technological innovations, the SEGWAY HT. 
Log onto http://www.securityfocus.com/FastTrain-security-basics 
----------------------------------------------------------------------------

• Previous message: Trevor Cushen: "RE: rogue IP address"
• Maybe in reply to: Tim Laureska: "block internet at two workstations"
• Next in thread: Peter McLernon: "RE: block internet at two workstations"
• Reply: Peter McLernon: "RE: block internet at two workstations"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]