As the network administrator at the school I work for, I am running a Windows network domain with 2 Server 2008 domain controllers. Our gateway consists of a Sonicwall NSA 2400 firewall. Using the Reports feature on the Sonicwall, I can see which users, by their IP addresses, are using the most bandwidth. Streaming video is prohibited due to our terrible bandwidth (3.0 Mbps T1). I have blocked all known sites, but users still find ways around the filter.
My question is, how can I quickly block a user from accessing the internet once they are identified other than to physically confiscate their machine? In an ideal scenario, staff should still be able to access our in-house Exchange server for communication purposes, just not the internet. Students do not use email (at least they shouldn't be) so Exchange access for them is not a concern.
Does anyone have any idea on how to achieve this?
Thanks!
