Blocking Internet Access for a User Group with an ATP700
Freshman Member
Hello everyone,
I would like to know if an ATP700 firewall is capable of blocking internet access for an Active Directory user group. Specifically, I want to remove internet access for administrator accounts.
If it is possible, how can I configure the security rule? My firewall is properly connected to LDAP and correctly recognizes the group in question, but I’m unsure about the next steps…
Thank you in advance for your help!
All Replies
-
Because you have Active Directory available to you, what you might want to consider is to deploy custom Windows Firewall rules using Group Policy which blocks your internal subnets from communicating with external subnets and apply it only to the administrator accounts at login.
Example of how to configure the firewall rule:
Example of how to deploy the rule using GPO's:
I realize that does not answer your question in the way you'd asked it but I believe it will give you the results you want with better overall control.
0 -
Woops, sorry forgot the last link which shows how to deploy it with GPO's. Here you go:
https://www.blumira.com/blog/windows-firewall-with-gpos
0 -
Hello,
Thank you for your contribution.
The Windows firewall is managed by the antivirus, but it does not allow for the implementation of group policies affecting AD users.0 -
To do this, you’ll need to create an "ext-group-user" object for the specific group you want to restrict, and then set up a security policy to block that object.
For more detailed guidance, you can check out a related discussion here
Kay
See how you've made an impact in Zyxel Community this year!
0
Zyxel Employee
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 146 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight
