From: Ellen K. 

I think we don't have AD, Novell is controlling what AD would control. Or something.

(I Am Not A Network Guy, in case that wasn't already painfully obvious!)

On Mon, 28 Mar 2005 16:34:27 +0200, "Hrvoje Mesing"
 wrote in message :

>
>"Ellen K." 
wrote in message
>news:frie411ubovd2ghdv5f67hdqd2rdcd22vq{at}4ax.com...
>> Not my area of responsibility but I always like to help if I can:
>> We want to restrict the rank-and-file users to a few allowed sites like
>> FedEx and UPS.  In our morning briefing the other day it was stated that
>> everyone would have to have fixed IP addresses to do this (that part I
>> understand, since the restrictions are not to apply to everyone) and we
>> would have to have a proxy server.
>>
>> I actually don't know what a proxy server even is, but the IT director
>> said it's complicated.   So first of all, is it true that we would need
>> a proxy server?   And secondly, if so, is it complicated?
>>
>> Alternatively, is there any other way to do it?  We want to leave people
>> like directors and IT with full internet access.   Most boxes have no
>> external IP address and a dynamic internal one.  The only ones with
>> fixed internal ones are people who pcAW in to their desktop, which for
>> all I know might only be me because when they set up an additional
>> desktop for me recently they left the internal address dynamic and I
>> couldn't get to it.
>
>---
>
>Hi,
>
>..also epends on how big are You.
>You could check CSM proxy, or HW proxy BlueCoat (say 800).
>I would say that both can be integrated into Win AD domain (BlueCoat can for
>sure).
>From there You can enforce GPO_s with which You can granular Internet Access
>as You wish.
>
>Bye,
>
>
>---
>M.
>

--- BBBS/NT v4.01 Flag-5