Restrict access to computer

Home Page Forums Network Management ZeroShell Restrict access to computer

This topic contains 0 replies, has 0 voices, and was last updated by  mschutze 4 years, 9 months ago.

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • #43891

    mschutze
    Member

    Hi there,

    I’ve been running Zeroshell in our laboratory to control internet access with great success! HTTP proxy is working fine to block sites like Facebook.

    I now would like to add a few computers to the network and allow them only LAN access to the storage unit. These are computers attached to lab equipment (like DNA sequencers, microscopes, etc). It is very important that they remain free of viruses, so I would like to block all access to the internet and other computers from the LAN (except the storage unit).

    I tried searching for the best way to do this, but couldn’t find much information. I think the basic idea is to allow only DNS, DHCP and 445/TCP access to the IP from the storage unit to the IPs belonging to the computers.

    How would be the best way to do this?

    Thanks,

    #53229

    DrmCa
    Participant

    You don’t even need to allow DNS.
    Set up ZS box as a DNS server and forbid port 53 for entire LAN in a firewall.
    The LAN machines will use ZS box as a DNS server.

    There is a writeup here: https://www.zeroshell.org/opendns/

    You can use OpenDNS or your ISP provider’s DNS.

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.