1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Access Restriction how to

Discussion in 'Tomato Firmware' started by musicarvind, Apr 2, 2009.

  1. musicarvind

    musicarvind Addicted to LI Member

    Hi everyone. I managed to use Access Restriction on one of my computers on the network. Thing is that this person has started chatting etc via some websites using chat templates.

    We need her to do work on only one website and nothing else.

    How can i disable everything except one website http://www.ourwebsite.com ?

    thanks in advance.
  2. peyton

    peyton LI Guru Member

    use opendns to block chat/im http services.

    It's not only 1 site in whitelist but it could do the job.
  3. Toastman

    Toastman Super Moderator Staff Member Member

    You could use QOS. Set a rule to kill off all Chat services. e.g. if it's MSN Messenger, destination port 1863, if only for her, add her source MAC address too. Then make a class to go with it. Set lowest priority E as your "crawl" class and then proceed to strangle it. You might try outgoing 1 and 1 or NONE and NONE. Incoming to 1 etc....

    Set the port numbers for MSN/Yahoo/ICQ/AOL and anything else she might use also. This would have the advantage of stopping everyone in your organization from wasting time on the chat servers.

    I *give* a priority to these ports 194,1503,1863,3389,5000-5010,5050,5100,5190-5193,6005,8000-8010 which are all associated with chat servers - you will be doing the opposite.
  4. musicarvind

    musicarvind Addicted to LI Member

    I was able to restrict her from chatting using tomato's access restrictions. but i also want to stop her from visiting all websites except one. ie http. is that possible?

    we only want her to use the internet for doing out website up.
  5. Toastman

    Toastman Super Moderator Staff Member Member

    I can't think of a good way using GUI, but you can do it with a script in iptables I am sure. Perhaps someone who is good with scripts can help.
  6. Zoltair

    Zoltair LI Guru Member

    You'd be better off using your management skills to manage the person in stead of imposing difficult to manage network restrictions.
  7. musicarvind

    musicarvind Addicted to LI Member


    Lol. i guess thats the better alternative huh? :) thanks anyways guys.

Share This Page