Topic: Restrict internet

[BK]

Good day everyone,

May i know is SME V5 able to restrict a particular user from accessing the internet? is so may i know how and is there any how-to? or do i need to install some s/w?

Thanks

[Anthony]

I know you can use Squid to do this.
Squid can authenticate an SMB user and allow/block access based on that.
I am interested in doing it myself, but cannot find the how-to.

Can anyone point me to it, or create one?

The other solution is to block by IP address, which I do for one computer.
I do this by using an IPchains rule to block port 80 requests from a particular
IP address.  I have created a host entry so that the mac addr of that PC determines what IP addr it gets.    
Of course that doesn't stop the user using someone elses PC, or setting a local mac addr and getting a different dhcp address, but I had to do something.

[Jeff Coleman]

I'd like to see the ability to do this sort of access based upon groups.  Might be a nice server-manager blade...hint.

-jeff

[Patrick B]

I'd like to be able to block access to not just Internet sites (which you can use Dan's Guardian to take care of (http://dansguardian.org/), but also Instant Messaging traffic such as AOL IM, Yahoo Messenger, and M$FT Messenger - anyone have ideas?

I assume this is a firewalling type issue, where I will have to block certain port traffic for each service - but it would be nice to be able to block only certain users/IP's (cause I'd like to be able to use my IM!).

Suggestions/thoughts/ideas are welcome, thanks.