如何使用密码保护网络上的共享Internet访问 [英] How to password protect shared internet access on network

问题描述

在我的机构中，我们有一台主服务器计算机，其他所有计算机都通过有线连接或WIFI连接。



互联网连接提供给服务器计算机和网络上的所有计算机都在访问此Internet连接。



我想要这样一个系统，当网络中的任何计算机尝试访问Internet连接时，会出现密码提示对话框出现在该计算机上，如果该计算机用户拥有有效的用户名和密码，则只允许访问互联网，否则互联网连接将被阻止。



但这里在这种情况下，正常的局域网连接，文件共享和互联网连接以外的其他功能应该仍然可用。



有没有办法实现这个目标？

当有人试图访问他们的互联网连接时，我们可以像某些ISP那样做吗？??

In my institution we have a main server computer to which all other computers are connected via Wired Connection or WIFI.

Internet connection is provided to the Server computer and all computers on the network are accessing this Internet connection.

I want such a system that when any computer in the network tries to access the Internet connection, a password prompt dialog appears on that computer and if that computer user is having a valid username and password, then only the internet access is allowed or else the internet connection remain blocked.

But here in this case normal LAN connection, File sharing and other functionalities other than Internet connection should be still available.

Is there any way to accomplish this?
Can we do something like some ISP's do while someone try to access their internet connection..??

推荐答案

使用Wi-F我，通常的做法是：1）您可以使用Wi-Fi 安全方法之一，最常见的是WPA2，以允许使用密码进行访问，但这个秘密所有计算机的短语都是相同的; 2）您可以配置无线路由器以仅允许连接已知MAC地址的计算机，但系统管理员必须收集有效的MAC地址并支持存储在路由器上的列表;每个新的无线适配器都必须以这种方式在路由器数据上注册。



请参阅：

http://en.wikipedia.org/wiki/WiFi#Securing_methods [ ^ ]，

http://en.wikipedia.org/wiki/WPA2 [ ^ ]，

http://en.wikipedia.org/wiki/MAC_address [ ^ ]。



实际上从未阻止对Internet的有线访问。如果有人可以访问电线，则很明显，因此通常只有授权人员才能进行物理连接。即使有些陌生人连接到互联网，对任何其他位置的任何互联网用户来说，对您的公司网络来说也不会更危险。您应该允许有线访问Internet而没有任何限制，但您的公司域应该受到保护（通常，它基于密码保护，通常使用您的域身份验证）。它与你的问题无关。



如果你真的想限制互联网访问，这很可能，但我甚至不想讨论它，因为它根本没有意义，只是意味着做恶。对不起。

-SA

With Wi-Fi, the normal practice is this: 1) you can use one of Wi-Fi securing methods, most typically WPA2, to allow access with a pass phrase, but this secret phrase is the same for all computers; 2) you can configure wireless router to allow connection only for computers with known MAC address, but the system administrator has to collect valid MAC addresses and support the list of them stored on the router; every new wireless adapter has to be registered on the router data this way.

Please see:
http://en.wikipedia.org/wiki/WiFi#Securing_methods[^],
http://en.wikipedia.org/wiki/WPA2[^],
http://en.wikipedia.org/wiki/MAC_address[^].

The wired access to the Internet is practically never blocked. If someone gets access to the wire, it is quite apparent, so usually only the authorized people will physically connect. Even if some stranger connects to the Internet, it is no more dangerous to your corporate network that any Internet user on any other location. You should really allow wired access to Internet without any limitations, but your corporate domain(s) should be protected (and usually, it is based on password protection, typically using your domain authentication). It has nothing to do with your question.

If you really want to limit Internet access, this is quite possible, but I don't even want to discuss it, as it would make no sense at all and would be simply mean doing the evil. Sorry.

—SA

这篇关于如何使用密码保护网络上的共享Internet访问的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！