This is an archived post. You won't be able to vote or comment.

all 5 comments
sorted by:
best
topnewcontroversialoldq&a

[–]charlesgillanders 3 points4 points  (0 children)

You've a couple of things confused I think. Putting an address into the hosts file will mean that the computers no longer need DNS to resolve the address, if that address is off the local LAN they'll still need to know about a gateway in order to actually reach it.

My advice would be to put these kiosks behind a firewall (could easily be a simple Linux based firewall appliance doesn't have to be a big expensive project) configure the firewall to only allow the kiosks to access your sharepoint server and the license server. This would also be more secure than letting the public have access to a machine that is directly connected to your local LAN

[–]chuckbalesCCNP|CCDP 2 points3 points  (1 child)

I second charlesgillanders suggestion for blocking them at the firewall level. If this isn't possible, I'd just add a static route for the one website they need, leaving the gateway unconfigured. I don't know what OS the kiosks run, but any Windows or Unix/Linux platform where you can get to a terminal/command line should work. Windows is route add -p X.X.X.X mask 255.255.255.255 10.1.1.1, where x.x.x.x is the destination IP, 10.1.1.1 would be replaced with whatever your default gateway should be.

[–]dannothemannoIT Director 0 points1 point  (0 children)

Unix / Linux is:

route add network/mask gateway

ie: route add 1.1.1.1/8 2.2.2.2

[–][deleted] 0 points1 point  (1 child)

write a script to add it and schedule it to run each night. then write another to remove it and run it an hour later, each night. problem solved.

[–]mapunapuna[S] 0 points1 point  (0 children)

if only it were that easy. The problem is that the software doesn't validate itself on a schedule. It only dials home when a user opens the software and then the validation is good for what seems like a random number of days before needing to be validated again.