Need device that only allows routing to certain IPs

[Jordan]

Is there a router out there where rather than routing all IP traffic out to
the internet it will only route for specific IP addresses, ranges, or
domains and drop all the rest?

On my internal clients I don't use a default gateway. All traffic goes
through a proxy that filter and logs all external access. I have some
programs for sharing data between our network and some other clients that I
need most all computers in here to reach. I have went to each of the
computers and added a static route with "Route Add" and that works well, but
I would like to centralize it.

 

[Richard G. Harper]

I would assume there are several, and of course you can set up an ISA server
and do this. You'd need to look at a business-class router for this type of
programmability or perhaps a standard router with a firewall device added.

--
Richard G. Harper [MVP Shell/User] (e-mail address removed)
* PLEASE post all messages and replies in the newsgroups
* for the benefit of all. Private mail is usually not replied to.
* My website, such as it is ... http://rgharper.mvps.org/
* HELP us help YOU ... http://www.dts-l.org/goodpost.htm

 

[Kurt]

A Cisco PIX comes to mind, but there are alternatives. Take a look at
Cyberguard SG series firewalls. I prefer the standard router-type ACLs to
working with iptables like with the Cyberguard. If you only want to allow
access to specific web sites, you can accomplish this with access lists on
most any business-class router. If you have a large organization and need
fast switching and routing, look at a layer-three switch instead of a
router. They can route packets at full wire-speed. A "poor man's" way might
be to use a router and add routes only to sites you want to allow (no
default route).

....kurt