RE: Want to block HTTP(web) access but not filesharing
RE: Want to block HTTP(web) access but not filesharing
- Subject: RE: Want to block HTTP(web) access but not filesharing
- From: Rahulkumar Tibdewal <email@hidden>
- Date: Wed, 27 May 2009 12:24:04 +0530
- Acceptlanguage: en-US, en-IN
- Thread-topic: Want to block HTTP(web) access but not filesharing
Hi
>It sounds like you plan to install custom software on each client that
>will block internet access when instructed by your server. Is that
>what you are thinking?
--Peter
YES, very correct.
--Rahul
>This is not the most common approach since it requires physical access
>to each client and cooperation from the client to block its own
>Internet access when you ask it to. The user could easily bypass this
>by disabling whatever custom software you installed, or plugging a
>different computer into your LAN.
--Peter
I have access to those machine and can install software's on those machine.
Client cant disable or kill that particular software installed its associated with Launchd process.
--Rahul
>The more common approach is to exert control at the Internet access
>router your clients use to reach the public Internet. Would that be
>an option for you?
- Peter
As I said, moreover custom software will help me block web access for that machine.
Server won't do anything than sending block internet command.
It's all client program handling the problem.No outer world interference. Client machine blocks web access for itself.
--Rahul
>If you want to block access to servers outside the intranet, then do
>the blocking based on addresses. You presumably know the netmask of
>your network, so you need to configure the OS routing tables to
>disable routing of any addresses not in that mask.
--Jens
This can be a solution. Can have more discussion on same.
--Rahul
>Alternatively, if you can talk to the router, you can tell it to stop
>routing packets for the given client machine. That's a lot more
>foolproof since there's nothing that can be done on the client to get
>around it (short of plugging in a new network card).
--Jens
Sorry Jens I cannot talk to router. Hope I could. All we have to do is client machine blocks it's on
Web access. So, I am writing a custom software for it, which will receive a instruction from server and
Act accordingly.
--Rahul
After all this good discussion, I feel configure the OS routing tables is good idea.
Can we proceed our discussion on this topic for design and implementation.
Thanks,
Rahul
DISCLAIMER
==========
This e-mail may contain privileged and confidential information which is the property of Persistent Systems Ltd. It is intended only for the use of the individual or entity to which it is addressed. If you are not the intended recipient, you are not authorized to read, retain, copy, print, distribute or use this message. If you have received this communication in error, please notify the sender and delete all copies of this message. Persistent Systems Ltd. does not accept any liability for virus infected mails.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macnetworkprog mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden