Did you try what I suggested with the DHCP scope and the group policy? S -----Original Message----- From: Joseph Danielsen [mailto:JDanielsen@xxxxxxxxxxxxxxxx] Sent: Saturday, November 19, 2005 11:34 AM To: ISA Mailing List Subject: [isalist] HOSTS File - Email found in subject - Email found in subject - Email found in subject http://www.ISAserver.org Thanks Ray! I didn't think of updating the firmware. Currently, the firmware doesn't have MAC level access or parental controls. Since HOSTS doesn't have an easy "one liner", I'll try to upgrade the firmware or simply pay for a new router out of my own pocket. Thanks All! p.s. In the meantime - I'll also research poisoning the ARP cache and IPSec ideas....sounds fun. Joseph F. Danielsen, MCSA-Messaging, MCP Network Blade Inc. 49 Marcy Street Somerset, NJ 08873 (732) 213-0600 www.NetworkBlade.Com -----Original Message----- From: Ray Dzek [mailto:Ray.Dzek@xxxxxxxxxxxxxxx] Sent: Friday, November 18, 2005 1:12 PM To: [ISAserver.org Discussion List] Subject: [SPAM-HC] - [isalist] RE: RE: HOSTS File - Email found in subject - Email found in subject - Email found in subject http://www.ISAserver.org Linksys provides for mac level access control. There are also "parental control" filters in just about all SOHO routers these days. Just change those in the Linksys. That should at least get them scratching their heads for a bit. You can also, depending on which Linksys (WRT54g) you have, re-flash with 3rd party firmware which would give you even more control. Sveasoft, and DD-WRT are the 2 main firmware replacements that I have used to increase the stability and utility of my Linksys WRT54g's. Make sure you read the respective forums before you do anything. Linksys has changed their hardware so the newest version of the WRT54g is not compatible with the replacement firmware. -----Original Message----- From: Joseph Danielsen [mailto:JDanielsen@xxxxxxxxxxxxxxxx] Sent: Thursday, November 17, 2005 10:34 AM To: [ISAserver.org Discussion List] Subject: RE: HOSTS File - Email found in subject - Email found in subject They're sitting behind a linksys router - don't think DHCP reservations are possible. OK - so if you CAN NOT write a one-liner in HOSTS, I'll suggest an upgraded Linksys router which has controls to deny internet connectivity to certain computers during certain times...... oh and an aluminum bat. Thanks Joseph Danielsen: MCSA-Messaging, MCP Network Blade Inc. 49 Marcy Street Somerset, NJ 08873 Phone: 732-213-0600 www.networkblade.com ________________________________ From: Ara Avvali [mailto:ara.avvali@xxxxxxxxxxxxx] Sent: Thu 11/17/2005 1:08 PM To: [ISAserver.org Discussion List] Subject: [SPAM-HC] - [isalist] RE: HOSTS File - Email found in subject - Email found in subject http://www.ISAserver.org LLLOOOLLL Ara Avvali Boss Audio Systems Email: ara.avvali@xxxxxxxxxxxxx -----Original Message----- From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] Sent: Wednesday, November 16, 2005 10:22 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: HOSTS File - Email found in subject http://www.ISAserver.org It's an aluminum softball bat. It's better than wood because instead of the dull "thwok", you get a much more satisfying "bing" when it makes contact with the human skull. -----Original Message----- From: Ara Avvali [mailto:ara.avvali@xxxxxxxxxxxxx] Sent: Wednesday, November 16, 2005 7:50 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: HOSTS File - Email found in subject http://www.ISAserver.org Jim, What is the adjusment tool? -----Original Message----- From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] Sent: Wednesday, November 16, 2005 2:29 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: [SPAM-HC] - RE: HOSTS File - Email found in subject http://www.ISAserver.org ..except that his users are local admins and know the network. Time for the user adjustment tool, IMHO... ------------------------------------------------------- Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://isaserver.org/Jim_Harrison/ http://isatools.org Read the help / books / articles! ------------------------------------------------------- -----Original Message----- From: Steve Moffat [mailto:steve@xxxxxxxxxx] Sent: Wednesday, November 16, 2005 14:25 To: [ISAserver.org Discussion List] Subject: [isalist] RE: [SPAM-HC] - RE: HOSTS File - Email found in subject http://www.ISAserver.org In dhcp, ceate a reserverd IP address for the workstation. Do not assign a gateway ip address. Use group policy to deny access to the nic properties. Easy, clean, simple. S -----Original Message----- From: Joseph Danielsen [mailto:JDanielsen@xxxxxxxxxxxxxxxx] Sent: Wednesday, November 16, 2005 1:51 PM To: ISA Mailing List Subject: [isalist] RE: [SPAM-HC] - RE: HOSTS File - Email found in subject http://www.ISAserver.org The workstation needs network access (shared database on another computer [tracking fire calls responded to]), but other computers are allowed internet access. I've even prevented the IE from executing in a local GPO - but they already found a work around for that i.e. Start Menu > Windows Update, or any application which has their home page in the Help menu etc. The organization has a few guys who know a (little bit) about NIC settings and will discover the manual configurations - and change them. And yes, some of them have local admin level. I'm sure if there is an easy HOSTS line I can enter - this could be my best solution. Any? Joseph F. Danielsen, MCSA-Messaging, MCP Network Blade Inc. 49 Marcy Street Somerset, NJ 08873 (732) 213-0600 www.NetworkBlade.Com -----Original Message----- From: Ben Schorr [mailto:bens@xxxxxxxxxxxxxxxx] Sent: Wednesday, November 16, 2005 2:41 AM To: [ISAserver.org Discussion List] Subject: [SPAM-HC] - [isalist] RE: HOSTS File - Email found in subject http://www.ISAserver.org Well, I don't understand why you'd bother having a broadband connection but deny all workstations access to it. That said, why not just pass the workstations the loopback address for DNS server? Ben M. Schorr Chief Executive Officer ______________________________________________ Roland Schorr & Tower 737 Bishop St. Suite 1655 Honolulu, Hawaii 96813 Mobile: 808-782-6306 Fax: 808-533-3677 www.rolandschorr.com bens@xxxxxxxxxxxxxxxx -----Original Message----- From: Joseph Danielsen [mailto:JDanielsen@xxxxxxxxxxxxxxxx] Sent: Tuesday, November 15, 2005 20:39 PM To: [ISAserver.org Discussion List] Subject: [isalist] HOSTS File http://www.ISAserver.org Is there a way to (using only a HOSTS file) to point all domains back to the loopback address? I have a volunteer Organization in workgroup mode, using a Link$y$ broadband router (old) on a cable ISP. They need an easy/quick method to stop all internet name resolution. Due to current complications, HOSTS file is my only solution. Is there a "catch all" line I can do i.e. 172.0.0.1 *.* (*.com) (.com) etc. Joseph F. Danielsen, MCSA-Messaging, MCP Network Blade Inc. 49 Marcy Street Somerset, NJ 08873 (732) 213-0600 www.NetworkBlade.Com ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Visit TechGenix.com for more information about our other sites: http://www.techgenix.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jdanielsen@xxxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Visit TechGenix.com for more information about our other sites: http://www.techgenix.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: isalist@xxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx