D-Link Forums
The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: djm on November 16, 2009, 03:45:29 PM
-
Hi,
I have set up 2 IP rules - one allow for a specific range of LAN addresses on HTTP-outbound and one deny on all LAN addresses on HTTP-outbound.
This effectively only allows certain computers to be able to browse the web.
Is it possible - probably using User Authentication - to set it up so that when anybody on any of the LAN's computers attempts to browse the web they get asked for user/password to authenticate and only if successful do they get on the Web?
Thanks,
David.
-
Sure, the below FAQ should be a start for you, be very careful about mimicking it perfectly and it will work.
This is a very easy one to get one step wrong on and end up with a 90% correct config and 20% of the functionality you had before you started.
For that reason I would add the IP Rules you are going to create to a folder below your original outbound rules, and then disable your original outbound rules while testing. Then you have the ability to reverse most of your changes with a couple clicks.
http://www.dlink.com/support/faq/?prod_id=2395
-
Hi Fatman, thanks for offering some help.
I implemented the link that you gave. On one of the computers on the LAN, if I then attempt to use a browser to visit say www.google.com I get access to the site without being asked for a username etc. If I enter the LAN IP of the DLink I then get asked for a login. But what point is that login. It neither gives nor denies access to the general Internet which is what I was hoping to do.
Any other ideas?
Thanks,
David.
-
Then you either did not set up the port forward section of the FAQ correctly, or you failed to make the authenticated IP group correctly, or you didn't put the rules in the right order.