Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Internet restrictions for isolated PCs in the Network

Status
Not open for further replies.

nukeinfer

IS-IT--Management
Dec 14, 2022
1
LK
Can somebody guide me about below configurations is possible using windows server 2008 R2 Group Policy methodology.

Restrict to access USB devices for data transfer
Restrict to access inbound and out bound internet access
all PCs is in the Active directory in the network. selected PCs need to allow for the Internet and USB data sharing.

 
Yes, it is possible to configure the following restrictions using Windows Server 2008 R2 Group Policy:

Restrict access to USB devices for data transfer:

Create a Group Policy Object (GPO) and navigate to "Computer Configuration" > "Policies" > "Administrative Templates" > "System" > "Removable Storage Access."
Enable the policy "Removable Disks: Deny write access" to prevent data transfer to USB devices.
Apply the GPO to the desired organizational units (OU) containing the target computers.
Restrict access to inbound and outbound internet access:

Create a GPO and navigate to "Computer Configuration" > "Policies" > "Windows Settings" > "Security Settings" > "Windows Firewall with Advanced Security."
Define inbound and outbound rules to block internet access based on ports, IP addresses, or other criteria.
Apply the GPO to the desired OUs containing the target computers.
Allow selected PCs for internet and USB data sharing:

Create a separate OU for the selected PCs that need exceptions.
Apply the appropriate GPOs described above for USB and internet restrictions to the main OU containing all PCs, except for the exceptions.
Create a new GPO for the exception PCs and configure it to allow USB access and internet access.
Apply this exception GPO to the OU containing the exception PCs.
Ensure that the GPOs are linked correctly to the appropriate OUs and that Group Policy updates are applied to the client computers for the changes to take effect.
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top