|
Title: Block Almost ALL Internet Access Post by: garak0410 on Monday 01 July 2013, 11:49:35 pm Hello!
We upgraded a PC in our Steel Shop and the manufacturer suggested to keep it like Day one, meaning no Windows, Java, Adobe and other updates...and also to include no Antivirus...it is behind our Endian 2.5.1 firewall and I was wondering if there was anyway to control the access from it. It basically needs a port open for remote desktop and perhaps teamviewer...everything else blocked. Suggestions? Thanks! Brian Title: Re: Block Almost ALL Internet Access Post by: S3@N on Sunday 07 July 2013, 06:58:09 pm You should configure windows to stop updates if that is really what you want. Also make sure that the user account that is normally used to access the PC is not an administrator so it cannot install software. If you really don't want AV on the machine then you'll need to look very carefully at what is allowed in terms if external access, it's usually users that introduce viruses from emails or web browsing or even IM so you might want to disable these in some way. Then config the firewall to only allow inbound on the ports needed for the services you want to allow.
|