Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

user adding gateway ip to access internet 1

Status
Not open for further replies.
JacobTechy

JacobTechy

Programmer
Joined
Apr 14, 2005
Messages
181
Location
US
I have a user who is adding our gateway ip to his networking connection and thus having the ability to access the internet which is not allowed. How can I block the user from adding the gateway. How can I remove the gateway from his computer. I have tried delete in dos but does not work.
 
Sort by date Sort by votes
You fail to identify the OS, but it appears to be a Windows OS since you mention DOS. I believe that even if you use the DOS "route /delete" command in DOS, if the Gateway is configured in the GUI, it will re-appear after a reboot.

The obvious answer is to remove administrator privileges from this user's account (it should be removed from everyone's account). I believe that this can be handled through a group policy setting if you are Windows XP on an Active Directory Domain.

But it sounds as if you are a small network, without much in the way of centralized control. If that is the case, I would be more likely to do something like defining a different route on the gateway for that subnet, so that packets from the Internet to this user's machine cannot be routed correctly.

Or I might choose to do MAC address filtering, and only allow the MAC addresses that I wished to have access to the Internet to get through.

A lot depends on what equipment you have at hand, how big the network is (what has to be done to reconfigure) and how much you are willing to invest in filtering technology.


pansophic
 
Upvote 0 Downvote
What type of device is the default gateway? I'm sure there are some kind of access lists you can configure to deny his IP address access to the outside world. That way, even if he changes his default gateway, he still can't get to the Internet.
 
Upvote 0 Downvote
The OS is Windows 2000. The device we use is a pix515E. What I am going to do is change the lan settings on the browsers internet options to point to our web server so he can at least access our intranet then block him from editing the lan settings.
 
Upvote 0 Downvote
wow extacly what I needed. Thanks! Is there a way to do this over a login script?

1. set to false proxy server and enter allowing domain
2. prevent user from changing this IE setting
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

CryptoTuke
  • Locked
  • Question Question
Maximum buffer size on Winsock for sending one block of data over TCP / IP
Replies
1
Views
2K
maybeimaleo
maybeimaleo
jmarkus
  • Locked
  • Question Question
Can I have a different private IP address which isn't on my router's subnet?
Replies
6
Views
1K
sbcsu
sbcsu
Demon Monkey
  • Locked
  • Question Question
Whitelisting varying IP address?
Replies
2
Views
1K
SamBones
SamBones
Vedant Gonnade
  • Locked
  • Question Question
How to send a string (generated by camera) to computer
Replies
0
Views
869
Vedant Gonnade
Vedant Gonnade
TheFaz_
  • Locked
  • Question Question
Sending udp packets from fpga to the computer using Lwip tcp/ip stack using C programming
Replies
0
Views
925
TheFaz_
TheFaz_

Part and Inventory Search

Sponsor

Back
Top