Hello,
In my small office I currently have setup DD-WRT with OpenDNS as a filesharing site blocking method.
However, when they take these laptops outside, they connect their own hotspot and unblock all file sharing sites.
Is it possible to setup my own DNS server, which forwards to my OpenDNS setup?
Am I looking into something like a DNS proxy setup?
If they go outside they can use any wifi, mobile phone to get around your restrictions unless you make it an offence and set up a domain to stop this
That's just an article to benchmark all the DNS servers and to find the fastest one.
My problem is different.
I am using OpenDNS in my office to block file sharing and social networking websites. It works great!
However, when laptops are taken outside and connected to other WiFis, file sharing and social networking websites can be accessed.
My question is, how can I block file sharing and social networking websites when on outside networks as well?
I can use the hosts file to block individual websites but there are millions of file sharing and social networking websites. It cannot be possible to identify every single one and block them via the hosts file.
Try web filtering instead (works system wide), admin rights required to change settings.
Forticlient - Next Generation Endpoint Protection
Download K9 for Win/Mac | K9 Web Protection
Hi there
@lolcocks
Have 2 routers -- one for public internet with Guest access and the other one for internal / your controlled network.
have the public one as wifi connections and your controlled one set up so they can access only via a proxy so that will control the sites they can access. For the open guest one just put in some house rules - but so long as it's separate from the internal network one then you are OK --- personally I'd only allow access on the GUEST network with people's personal laptops and let only company supplied laptops access the other internet server.
There's no realistic way that you can stop people setting up a mobile phone 4/5g access point on their own personal laptops unless you jam the mobile phone signal which in most countries would be illegal.
On Work laptops if you set the proxy settings correctly people would not have rights to alter these so would not be able to access public wifi systems. There's not much you can do to block personal laptops though unless you ban use of these in the office which would be counter productive anyway.
Cheers
jimbo
To everyone in this thread,
( I will mention everyone so that they get the notification, @D3LL @Samuria @swarfega @TairikuOkami @jimbo45 )
The ultimate solution to this was to get a VPS and to setup a VPN.
(I could have done it on one of the computers in the office but the office ISP has put us behind a Carrier Grade NAT, so setting up a VPN in house is possible, but it won't be accessible from outside networks).
I tried setting up a DNS forwarder on the VPS but I remembered DD-WRT's OpenDNS Wiki Page. Certain routers can be set to force the use of a certain DNS, even though you have set another DNS in your machine's settings.
So the final solution is to get a VPS, make the VPS use OpenDNS, setup a PPTP VPN on it and route all the traffic through the VPN.
Quote