Home » Questions » Computers [ Ask a new question ]

allowing local network access while blocking internet access [duplicate]

allowing local network access while blocking internet access [duplicate]

I have a networked computer that is used as a remote print/scan server (which is shared by numerous users) Is there any way I can block the machines internet access while still allowing it to connect to our local network?

Asked by: Guest | Views: 312
Total answers/comments: 3
Guest [Entry]

"The easiest way to do this by far (but anyone technical could bypass) is simply to go to internet properties and change the proxy to something non-existent.

Other than this, If you have no intranet, you could look at Windows Firewall (If this is Vista +, not sure XP supports this) and block port 80 outgoing.

Both of these methods can be countered if the machine is not locked down.

Personally, if there is no reason for users to be on this other than there programs, just completely lock it down through group policy."
Guest [Entry]

I think the simplest way for doing this is to set wrong default gateway.
Guest [Entry]

"I tried the solution @MaciekSawicki proposes, but I couldn't get it to work. When I set the default gateway to something invalid, it was unable to connect to the network at all - even the local intranet.

Instead, I accomplished this by leaving the connection on DHCP (or valid manual config) and and setting the DNS manually. The first DNS server, I set it to an invalid IP address (192.0.0.0) and left the second one blank, so no domains will be able to be resolved to an IP address. This means that anything that explicitly uses the IP instead of a domain name will work, but all names will fail. This makes it pretty useless for end users trying to check their facebook. If you want to add an allow list of domains that users can resolve, you can put them in a hosts file. Just make sure to keep it updated if IP addresses change."