We use ISA as just a caching proxy and that will authenticate against
the AD. I'm pretty positive that SQUID will also authenticate against AD
and comes in Linux and Windows flavours these days... Wingate is also a
good cheap proxy with AD integration. I would imagine that the
NetAppliance will 2 as it's not rocket science... You'll need to check.
You wouldn't need to authenticate all users... You would just put the
users you wish to have access into an AD group, i.e. 'Internet Users'
and then grant that group access through your proxy. The proxy would
then be the box which determines if a user can browse, etc.
I prefer the above methods for ease of management with standard
browsing.. It also improves browsing speeds due to the cache.
BR
Rob
-----Original Message-----
From: John Lindblom [mailto:jlindblom AT MICO DOT COM]
Sent: 12 July 2004 21:24
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: Re: [FW-1] MAC Address Blocking
What are you using to maintain the user names, are you authenticating
against AD?
I wanted to avoid having to have everyone authenticate when only a few
will be blocked.
John
|---------+-------------------------------------------->
| | Edwin Davidson |
| | <EDavidson AT PRIMEINC DOT COM> |
| | Sent by: Mailing list for |
| | discussion of Firewall-1 |
| | <FW-1-MAILINGLIST AT AMADEUS.US DOT CHEC|
| | KPOINT.COM> |
| | |
| | |
| | 07/12/2004 01:07 PM |
| | Please respond to Mailing list |
| | for discussion of Firewall-1 |
| | |
|---------+-------------------------------------------->
>-----------------------------------------------------------------------
---------------------------------------|
|
|
| To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
|
| cc:
|
| Subject: Re: [FW-1] MAC Address Blocking
|
>-----------------------------------------------------------------------
---------------------------------------|
>>Rutherford, Robert
>>Sent: Monday, July 12, 2004 3:13 AM
>>I wouldn't advise blocking MAC addresses.... Also seems to be a bit of
>>admin nightmare. Why not use an authentication method, i.e. User or
>>Session auth? Or put in an authenticating proxy and allow that access
I have to agree here. We use surfcontrol to block by MAC address., but
that is a pain to manage. Often PC's get upgraded, and the NIC that
once belonged to Joe Web Offender goes to innocent Jane, leaving Joe
with internet access and Jane without.
And if the PC/NIC is retired, then how would you know to update
the MAC block. DHCP reservations are just as much a pain to manage.
We usually use the USER NAME and not the MAC for Surfcontrol blocking,
but there are some rare cases where we have to use MAC to block as the
PC doesn't log into the domain/ad/etc.
Whatever you decide to use, I'd suggest to keep a notebook with a copy
of who/what you blocked and why. That's been a lifesaver here -- If I
unblocked Joe because his manager told me so, then 6 months later his
manager asks why I unblocked Joe., it's nice to not have to jogg the old
memory.
http://www.primeinc.com
**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they are
addressed. If you have received this email in error please reply to the
sender of the message.
The views expressed in this correspondence may not
reflect the views of Prime, Inc.
This footnote also confirms that this email message has
been scanned for the presence of computer viruses.
**********************************************************************
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
This e-mail and the information it contains are confidential and may be
privileged. If you have received this e-mail in error please notify the sender
immediately and delete the material from any computer. Unless you are the
intended recipient, you should not copy this e-mail for any purpose, or
disclose its contents to any other person.
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of
this communication as it has been transmitted over a public network. Whilst the
MCPS-PRS Alliance monitors all communications for potential viruses, we accept
no responsibility for any loss or damage caused by this e-mail and the
information it contains.
It is the recipient's responsibility to scan this e-mail and any attachments
for viruses. Any
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for
quality control and other purposes.
The MCPS-PRS Alliance Limited is a limited company registered in England under
company number 03444246 whose registered office is at c/o 29-33 Berners Street,
London, W1T 3AB.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
