Use DNS Server to block IPs of bad sites

  • Thread starter Thread starter Techpriest
  • Start date Start date
T

Techpriest

There are some website I would rather my users not go to.
Since all the PCs use the Windows 2000 Server for DNS
resolution, I was wondering if there was a way I could add
an address and give it the IP of 127.0.0.1. Then when PC
tried to resolve name it would get not be able to find
page.

Using Windows 2000 Server and AD Domain.

Thanks!
 
In
Techpriest said:
There are some website I would rather my users not go to.
Since all the PCs use the Windows 2000 Server for DNS
resolution, I was wondering if there was a way I could add
an address and give it the IP of 127.0.0.1. Then when PC
tried to resolve name it would get not be able to find
page.

Using Windows 2000 Server and AD Domain.

Thanks!
Click to expand...

For each site, you could create that domain name, and then create a www
entry for it. For the www entry and the (same as parent) entry, give it
127.0.0.2, not 127.0.0.1, which will point back to each users' machines.

However, this would be tedious and archaic. Really what you should have is a
proxy or ISA server to accomplish this.

--
Regards,
Ace

Please direct all replies ONLY to the Microsoft public newsgroups
so all can benefit.

This posting is provided "AS-IS" with no warranties or guarantees
and confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services

Security Is Like An Onion, It Has Layers
HAM AND EGGS: A day's work for a chicken;
A lifetime commitment for a pig.
 
T> There are some website I would rather my users not go to.

Then either configure a proxy HTTP server with a blacklist or require
that all web browsers be configured with a blacklist (via PAC script or
some such). The DNS is not the tool for this job.
 
Back
Top