I read the example on the Wiki about the school and where you would have two groups of users, 1 for the students, and 1 for the teachers. So my assumption for web content blocking would be to setup two racks and a custom policy for the students.

Question:

I have setup a second rack and a policy, but how can i define a group of users, or a range of ip addresses for the policy application? I was hoping to not have to tie this to my AD server and just do it based on multiple ip addresses, but do not see where this is done. Basically just wondering if you can do it int he client address spot....example(192.168.0.4,192.168.0.6,192.168.0. 7,etc), or do I have to define a policy for each ip address to use the second rack?

Thanks in advance.

welcome!

You are correct, thats the best way to do policies like that.

You can do ranges of IP address as a list.

"192.168.1.100,192.168.1.101"

You can also do CIDR (http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing) notation:

"192.168.1.100/28"

In 4.2 you will also be able to select a group of users instead of having one rule per user.

screenshot of new user policy management under 4.2 (coming soon)

couple more questions.

I am mostly interested in the web content portion of the product.

Question #1: Where are the url lists or url databse from?? are they third party or made in house?

Question #2: When testing the web content, it appeared facebook.com was not blocked when blocking social networking. Any reason??? I know that i can just url block it, but i would think it would be an obvious.

Question #3: It there any way to temporary override settings. Example: Lets say I am sitting at a users machine and I am the IT Admin. Now for this particular machine i have setup content filtering so they have no internet. Is there a way to quickly disable the blocking so that i may have full internet access temporarily while I am at the machine??? I am assuming that once you have the untangle box tied to AD I could just log that person off and logon as an admin, I am just seeing if there is an easier way?

Thanks, Tim

PS:
Question #4: I am confused on licensing. If we use only content filtering and have 35 machines. Now on 10 of them we have internet completely disable, and on the other 25 machines they have blocking of some sort, would I need to pay $30/mo or $95/mo?

1) They are from urlblacklist.com (with some custom tuning)

2) I've submitted the change. In general we're looking for a way to build a community feedback mechanism to enhance the service for everyone.

3) Nothing comes to mind, depending on how you setup your policies. Logging in as a new user will fix it, but it may take up to 5 minutes for your untangle server to requery who is logged in.

4) If the 10 are offline (not networked) then they don't count. If they are networked (and being blocked by your untangle server) then its 35 seats total, putting you in the 30+ seat band. You can call and talk to a sales rep or email sales@untangle.com if you have further questions regarding licensing - they can answer all your questions and tell you about an discounts. :D