The Internet helps to work and play, but, in addition to the obvious benefits, it is fraught with many dangers. There are many sites promoting pornography, prostitution, violence, war, ethnic and religious strife, drug and alcohol use. Access to this kind of information is undesirable or simply illegal. The Traffic Inspector and the NetPolice module will come to the rescue, which together solve the problem of preventing access to harmful online resources.
Necessary
- - Server for the local network;
- - Traffic Inspector program.
Instructions
Step 1
Download the latest available version of Traffic Inspector. Activate the program and carry out its initial configuration using the setup wizard. Add users to the program. Activate the NetPolice module.
The general scheme of the solution is as follows. Traffic Inspector with NetPolice module is installed at the entrance to the organization's local network. The user types the website URL (site name) into the browser. The request to access the site is intercepted by the Traffic Inspector, which checks the site's rating in the NetPolice database. If the resource does not belong to any of the prohibited categories, then access to the site is allowed. Otherwise, access is blocked and a corresponding informational message is displayed in the user's browser.
Step 2
Setting up a NetPolice module comes down to four main steps:
- creating a NetPolice rule;
- creating a Traffic Inspector rule associated with a previously created NetPolice rule;
- assignment of a previously created Traffic Inspector rule to a user or a group of users;
- redirecting users' web traffic to the web proxy built into Traffic Inspector.
Step 3
Let's say we want to ban websites with extremist topics. In the management console, go to the node "Traffic Inspector Extension modules" / NetPolice for Traffic Inspector / Rules. In the panel on the right, call the context menu and select the "Add" item. The List Wizard will make it easy to create a NetPolice rule. Let's set a friendly name for the rule, for example, “terrorism”. On the conditions tab, select the desired category (in our case, the category "terrorism"). On the "Content type selection" tab, select the "Create a new category" option. On the user rule tab, select the option “The rule will be created later” and click “Finish”.
Step 4
Let's create a Traffic Inspector rule and link it to the previously created NetPolice rule. In the control console go to the node "Traffic Inspector Rules. In the panel on the right we find the" User rules "frame, go to the" Actions "tab and click on the" Add rule "link.
In the console tree, navigate the nodes Console Root / Traffic Inspector Rules \. In the "User Rules" frame, go to the "Actions" tab and click on the "Add rule" link. Let's set a friendly name for the rule, for example, “terrorism”. In the process of creating a rule, select the traffic type "Traffic through a proxy server", the rule type "Deny", on the "Content analysis" tab, select the previously created NetPolice rule. Leave the rest of the settings as they are and click "Create Rule".
Step 5
Select a user account or user group and go to its properties. On the "Rules" tab, we find the drop-down list "Select a rule description" and click Add ", select the previously created Traffic Inspector rule and click the" Add "button.
Step 6
For the NetPolice module to work, the web traffic must pass through the Traffic Inspector web proxy. You can force all user web traffic to be directed to the web proxy so that users do not have to explicitly configure anything. To do this, go to the properties of the "Users and groups" node, on the "Transparent proxy" tab in the "For authorized users" frame, check the "Redirect HTTP traffic (TCP / 80) to proxy" checkbox.
The setup is complete. Now, any attempt by the user to access the specified sites will be blocked.