+ Post New Thread
Results 1 to 13 of 13
Internet Related/Filtering/Firewall Thread, Blocking websites without a proxy? in Technical; Hi, We currently use AB Tutor to block websites but this takes ages to roll out the banned websites to ...
  1. #1

    Join Date
    Nov 2011
    Posts
    628
    Thank Post
    87
    Thanked 21 Times in 19 Posts
    Rep Power
    10

    Blocking websites without a proxy?

    Hi,

    We currently use AB Tutor to block websites but this takes ages to roll out the banned websites to computers.

    The obvious answer would be to stick in a proxy but our network spans over five sites so each site would need its own proxy which would work out expensive. One proxy would work but the site containing the proxy would be bombarded with data.

    Is there a piece of server based software that rolls out banned websites when the computer starts so internet data can still go from computer to the WWW without going cross site first?

    Many thanks
    Last edited by dany2010; 18th October 2012 at 08:12 AM.

  2. #2


    Join Date
    Oct 2006
    Posts
    3,411
    Thank Post
    184
    Thanked 356 Times in 285 Posts
    Rep Power
    149
    Make DNS records for each website which point to 127.0.0.1.

  3. #3

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,615
    Thank Post
    648
    Thanked 1,618 Times in 1,448 Posts
    Rep Power
    421

  4. #4

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    9,262
    Thank Post
    242
    Thanked 1,568 Times in 1,250 Posts
    Rep Power
    340
    Modify the HOSTS file on each PC

  5. #5


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,638
    Thank Post
    275
    Thanked 778 Times in 605 Posts
    Rep Power
    223
    Quote Originally Posted by dany2010 View Post
    Hi,

    We currently use AB Tutor to block websites but this takes ages to roll out the banned websites to computers.

    The obvious answer would be to stick in a proxy but our network spans over five sites so each site would need its own proxy which would work out expensive. One proxy would work but the site containing the proxy would be bombarded with data.

    Is there a piece of server based software that rolls out banned websites when the computer starts so internet data can still go from computer to the WWW without going cross site first?

    Many thanks
    How big is each site? A certain popular product is licensed per user (unsure what the minimum is) and it costs exactly the same to have 600 people on one site as it does to have 3 sites of 200 people. You can also chain them together for unified configs.

  6. #6

    Join Date
    Nov 2011
    Posts
    628
    Thank Post
    87
    Thanked 21 Times in 19 Posts
    Rep Power
    10
    Sounds good Pete. Could you pm or post the product?

    We have 500 users over the five sites. One of the sites only has about 20 users.

    Have had a look at smoothwall but its hardware based which i dont think the manager would agree on.

    edit. Can open DNS be used alongside Windows server DNS?

    Sorry another update,

    Our DNS and DC servers are located at one site.
    Last edited by dany2010; 18th October 2012 at 10:50 AM.

  7. #7


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,638
    Thank Post
    275
    Thanked 778 Times in 605 Posts
    Rep Power
    223
    Quote Originally Posted by dany2010 View Post
    Sounds good Pete. Could you pm or post the product?

    We have 500 users over the five sites. One of the sites only has about 20 users.

    Have had a look at smoothwall but its hardware based which i dont think the manager would agree on.
    It's SW I'm referring too. You buy your licenses and then they send you a link to an .iso. While they do sell hardware boxes, I think most people here sorted out the hardware themselves. For 20 users you don't need anything fancy - a spare desktop would do. A HP Microserver would probably work so long as you weren't using AV scanning. Poke @tom_newton for supported configs.

    For OpenDNS, you'd set the OpenDNS servers as forwarders for your dns servers. Your internal servers would handle DNS requests from clients, they'd simply forward requests for things they didn't know to OpenDNS.

    Explain how your sites are linked, how much intersite bandwidth is there and how much traffic flows over those links currently.
    Last edited by pete; 18th October 2012 at 10:53 AM.

  8. Thanks to pete from:

    dany2010 (18th October 2012)

  9. #8

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,615
    Thank Post
    648
    Thanked 1,618 Times in 1,448 Posts
    Rep Power
    421
    You could also use the new dashboard to integrate multi site smoothies into one management console.

    Ben

  10. Thanks to plexer from:

    dany2010 (18th October 2012)

  11. #9

    Join Date
    Nov 2011
    Posts
    628
    Thank Post
    87
    Thanked 21 Times in 19 Posts
    Rep Power
    10
    Many thanks all,

    Just gave them a call and they are sending over a price and a demo.

    Lets hope all is good.

  12. #10

    Join Date
    Dec 2009
    Posts
    914
    Thank Post
    98
    Thanked 184 Times in 159 Posts
    Rep Power
    54
    We had a demo from sonicwall yesterday and you can control a multi site environment from a single dashboard with them

  13. Thanks to RTFM from:

    dany2010 (18th October 2012)

  14. #11
    Duke5A's Avatar
    Join Date
    Jul 2010
    Posts
    805
    Thank Post
    82
    Thanked 132 Times in 115 Posts
    Blog Entries
    8
    Rep Power
    32
    Squid can do just what you need for free. I'm in a six site school district with 4,000 students and all their traffic goes through a single proxy sitting in a VM setup with two virtual processors and 1GB of RAM. You would be surprised at how little the hardware requirements are for proxy servers.

  15. #12

    Join Date
    Nov 2011
    Posts
    628
    Thank Post
    87
    Thanked 21 Times in 19 Posts
    Rep Power
    10
    Just had the quote through from smoothwall and it would come to over £10,000.

    That more than a third of our yearly budget so won't be going with them.

    Will take a look at squid. Thanks Duke

  16. #13
    Quackers's Avatar
    Join Date
    Jan 2006
    Posts
    1,320
    Thank Post
    40
    Thanked 142 Times in 117 Posts
    Rep Power
    53
    A Fortigate 200B ? about £3000 to buy then £1000 a year for the filtering sub.

SHARE:
+ Post New Thread

Similar Threads

  1. Blocking websites in ABT6
    By edcirh in forum Internet Related/Filtering/Firewall
    Replies: 1
    Last Post: 26th March 2009, 02:43 PM
  2. Safari allowing LEA blocked websites
    By Pyroman in forum Mac
    Replies: 7
    Last Post: 16th July 2008, 10:48 AM
  3. Allow teachers to block websites using Websense
    By FN-GM in forum How do you do....it?
    Replies: 17
    Last Post: 6th May 2008, 06:02 PM
  4. Blocking websites on thin clients
    By beeswax in forum Thin Client and Virtual Machines
    Replies: 5
    Last Post: 23rd April 2008, 11:42 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •