Howto create a second rack and policy

[gotkimchi]

Updated with 9.3 screenshots
Scenario: You want to create different rule sets for different users. (AD users or via IP addresses)
Example: Allow teachers to go to youtube and block students from youtube.

Solution: To create different policies, you will need to use our policy manager. If you want to create different policies and also use Active Directory info instead of IP addresses, you will also need the Directory Connector.

Steps on creating the rack and policies.
1) First you will need to create a new rack. To create a new rack, you will need to go into the policy manager. Within the policy manager, there are three tabs.

To create a new rack, go to the "Policies" tab and create a new rack.

In this screenshot, I am creating a new rack called "Teacher".

2) Creating a policy.
After creating the new rack, you will need to create the rule telling which users or IP address(s) going to which rack. Click the rules tab, and create a new rule. If you are creating a rule based on IP address(s), you will need to use the source address condition.

In this screenshot, I am creating a rule with IP address range. 192.168.10.10-192.168.10.20

If you are creating a policy via the Directory Connector, you will need to use the AD username or group condition. Please check out this screenshot.


*If you want to create the policy based on time and day, you will need to add that condition in the rules*

**Another tip, make the default rack your most restrictive. This way, any new PCs, tablets, and etc. will go to that default rack. It forces the users to be authenticated or be on the special IPs to go to the other rack.**

[Mathiau]

Great guide, but how do i allow access to only facebook and not say myspace?

i would need to get every IP of facebook to allow it in specifically to place under the Server field correct?

[dmorris]

Great guide, but how do i allow access to only facebook and not say myspace?

i would need to get every IP of facebook to allow it in specifically to place under the Server field correct?

In web filter or esoft web filter, add "myspace.com" to the blocklist and hit apply.

this has nothing to do with policy manager though.

[jcoffin]

or add facebook.com and fbcdn.net to the pass list in web/esoft filter

[savasya]

@gotkimchi
i did like you told above. when i do with ips it s working. but when i do with AD it is not working.
as you can see, doing with ips is not good way because ips can change.
how can i configure my rules or the other stuffs?
i ve been trying to solve this problem for more than 1 week, but i couldnt do anything to solve it. pls help me
dont give me any link in Wiki i tried the sample in there. could you tell me step by step?

[gotkimchi]

updated with 9.3 screenshots.

[dmorris]

updated with 9.3 screenshots.

nice!

[pfloresh]

Hello,
Someone can give me an example of how to create policy based on time and day?

Thank you!

[jcoffin]

Stole it from dmorris

[wharfratjoe]

Sreenshots in OP are broken. Can someone fix?

Sent from my ADR6350 using Tapatalk 2