Hi. We're looking for an ISP who can provide access control facilities
at the ISP-end of internet access.

We have quite a few users (business) for whom we want to provide (pay
for) internet access but we wish to keep control over what parts of
the web they can go to, and monitor their usage.

Unfortunately, it is not practical to install monitoring software on
their PCs for two reasons: firstly we cant get regular physical access
to the equipment; and secondly, there would be nothing to stop the
user removing such software whenever they felt like it.

We know that if we were a large organisation, we could do this on our
in-house servers, but we're not and the users we have are scattered
all over the UK in small offices or working rfrom home.

Anyone tried anything similar or can point me at an appropriate ISP?

TIA

JohnK

On  19 Apr 2007, John F Kappler  wrote:

>Unfortunately, it is not practical to install monitoring software on
>their PCs for two reasons: firstly we cant get regular physical access
>to the equipment; and secondly, there would be nothing to stop the
>user removing such software whenever they felt like it.

Which would apply for many solutions, I expect.

>Anyone tried anything similar or can point me at an appropriate ISP?

I'd think that one of the ISPs offering business connections (such as
NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
the ISPs which send out routers configured for the customer's use, and
could force connections under your management.

If you requested some sort of VPN solution, then the traffic from your
customers would come into your own connection (so depends on how many
you plan to handle in this way, perhaps... for a small number if may
be workable, for 50+ it might get to be awkward and into hundreds I
expect it to be unworkable) and then their onward requests to get to
web sites would be under your control/monitoring.  So you would be in
a position to restrict access as needed...  But you would be handling
all the inbound / outbound traffic and that could get slow / costly.

I have *not* done this type of thing myself, but might be able to 
bounce some ideas...  my reply-to mail address is valid.

Should have added - how about posting in    uk.net.providers.aaisp

Even if they aren't in a position to provide it, may get some leads!

On  19 Apr 2007, John F Kappler  wrote:

>Unfortunately, it is not practical to install monitoring software on
>their PCs for two reasons: firstly we cant get regular physical access
>to the equipment; and secondly, there would be nothing to stop the
>user removing such software whenever they felt like it.

Which would apply for many solutions, I expect.

>Anyone tried anything similar or can point me at an appropriate ISP?

I'd think that one of the ISPs offering business connections (such as
NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
the ISPs which send out routers configured for the customer's use, and
could force connections under your management.

If you requested some sort of VPN solution, then the traffic from your
customers would come into your own connection (so depends on how many
you plan to handle in this way, perhaps... for a small number if may
be workable, for 50+ it might get to be awkward and into hundreds I
expect it to be unworkable) and then their onward requests to get to
web sites would be under your control/monitoring.  So you would be in
a position to restrict access as needed...  But you would be handling
all the inbound / outbound traffic and that could get slow / costly.

I have *not* done this type of thing myself, but might be able to 
bounce some ideas...  my reply-to mail address is valid.

Should have added - how about posting in    uk.net.providers.aaisp

Even if they aren't in a position to provide it, may get some leads!

On Mon, 07 May 2007 14:56:54 +0100, NoNeedToKnow
<me@privacy.net.invalid> wrote:

>On  19 Apr 2007, John F Kappler  wrote:
>
>>Unfortunately, it is not practical to install monitoring software on
>>their PCs for two reasons: firstly we cant get regular physical access
>>to the equipment; and secondly, there would be nothing to stop the
>>user removing such software whenever they felt like it.
>
>Which would apply for many solutions, I expect.
>
>>Anyone tried anything similar or can point me at an appropriate ISP?
>
>I'd think that one of the ISPs offering business connections (such as
>NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
>the ISPs which send out routers configured for the customer's use, and
>could force connections under your management.
>
>If you requested some sort of VPN solution, then the traffic from your
>customers would come into your own connection (so depends on how many
>you plan to handle in this way, perhaps... for a small number if may
>be workable, for 50+ it might get to be awkward and into hundreds I
>expect it to be unworkable) and then their onward requests to get to
>web sites would be under your control/monitoring.  So you would be in
>a position to restrict access as needed...  But you would be handling
>all the inbound / outbound traffic and that could get slow / costly.
>
>I have *not* done this type of thing myself, but might be able to 
>bounce some ideas...  my reply-to mail address is valid.

Hi John

I replied to the OP's post in alt.internet.providers.uk.  We do this,
it's controlled by user logon (i.e. user@domain) not by forced
hardware, which makes it very flexible in terms of what hardware is
used.  i.e. even if you have 10,000 users with a mix of DSL hardware
you can force them into the VPN and there's no way they can bypass it.

However, the OP didn't get back to me.

Jake
-- 
Address munged but valid - remove mungbeans.

On  19 Apr 2007, John F Kappler  wrote:

>Unfortunately, it is not practical to install monitoring software on
>their PCs for two reasons: firstly we cant get regular physical access
>to the equipment; and secondly, there would be nothing to stop the
>user removing such software whenever they felt like it.

Which would apply for many solutions, I expect.

>Anyone tried anything similar or can point me at an appropriate ISP?

I'd think that one of the ISPs offering business connections (such as
NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
the ISPs which send out routers configured for the customer's use, and
could force connections under your management.

If you requested some sort of VPN solution, then the traffic from your
customers would come into your own connection (so depends on how many
you plan to handle in this way, perhaps... for a small number if may
be workable, for 50+ it might get to be awkward and into hundreds I
expect it to be unworkable) and then their onward requests to get to
web sites would be under your control/monitoring.  So you would be in
a position to restrict access as needed...  But you would be handling
all the inbound / outbound traffic and that could get slow / costly.

I have *not* done this type of thing myself, but might be able to 
bounce some ideas...  my reply-to mail address is valid.

Should have added - how about posting in    uk.net.providers.aaisp

Even if they aren't in a position to provide it, may get some leads!

On Mon, 07 May 2007 14:56:54 +0100, NoNeedToKnow
<me@privacy.net.invalid> wrote:

>On  19 Apr 2007, John F Kappler  wrote:
>
>>Unfortunately, it is not practical to install monitoring software on
>>their PCs for two reasons: firstly we cant get regular physical access
>>to the equipment; and secondly, there would be nothing to stop the
>>user removing such software whenever they felt like it.
>
>Which would apply for many solutions, I expect.
>
>>Anyone tried anything similar or can point me at an appropriate ISP?
>
>I'd think that one of the ISPs offering business connections (such as
>NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
>the ISPs which send out routers configured for the customer's use, and
>could force connections under your management.
>
>If you requested some sort of VPN solution, then the traffic from your
>customers would come into your own connection (so depends on how many
>you plan to handle in this way, perhaps... for a small number if may
>be workable, for 50+ it might get to be awkward and into hundreds I
>expect it to be unworkable) and then their onward requests to get to
>web sites would be under your control/monitoring.  So you would be in
>a position to restrict access as needed...  But you would be handling
>all the inbound / outbound traffic and that could get slow / costly.
>
>I have *not* done this type of thing myself, but might be able to 
>bounce some ideas...  my reply-to mail address is valid.

Hi John

I replied to the OP's post in alt.internet.providers.uk.  We do this,
it's controlled by user logon (i.e. user@domain) not by forced
hardware, which makes it very flexible in terms of what hardware is
used.  i.e. even if you have 10,000 users with a mix of DSL hardware
you can force them into the VPN and there's no way they can bypass it.

However, the OP didn't get back to me.

Jake
-- 
Address munged but valid - remove mungbeans.

On  19 Apr 2007, John F Kappler  wrote:

>Unfortunately, it is not practical to install monitoring software on
>their PCs for two reasons: firstly we cant get regular physical access
>to the equipment; and secondly, there would be nothing to stop the
>user removing such software whenever they felt like it.

Which would apply for many solutions, I expect.

>Anyone tried anything similar or can point me at an appropriate ISP?

I'd think that one of the ISPs offering business connections (such as
NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
the ISPs which send out routers configured for the customer's use, and
could force connections under your management.

If you requested some sort of VPN solution, then the traffic from your
customers would come into your own connection (so depends on how many
you plan to handle in this way, perhaps... for a small number if may
be workable, for 50+ it might get to be awkward and into hundreds I
expect it to be unworkable) and then their onward requests to get to
web sites would be under your control/monitoring.  So you would be in
a position to restrict access as needed...  But you would be handling
all the inbound / outbound traffic and that could get slow / costly.

I have *not* done this type of thing myself, but might be able to 
bounce some ideas...  my reply-to mail address is valid.

Should have added - how about posting in    uk.net.providers.aaisp

Even if they aren't in a position to provide it, may get some leads!

On Mon, 07 May 2007 14:56:54 +0100, NoNeedToKnow
<me@privacy.net.invalid> wrote:

>On  19 Apr 2007, John F Kappler  wrote:
>
>>Unfortunately, it is not practical to install monitoring software on
>>their PCs for two reasons: firstly we cant get regular physical access
>>to the equipment; and secondly, there would be nothing to stop the
>>user removing such software whenever they felt like it.
>
>Which would apply for many solutions, I expect.
>
>>Anyone tried anything similar or can point me at an appropriate ISP?
>
>I'd think that one of the ISPs offering business connections (such as
>NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
>the ISPs which send out routers configured for the customer's use, and
>could force connections under your management.
>
>If you requested some sort of VPN solution, then the traffic from your
>customers would come into your own connection (so depends on how many
>you plan to handle in this way, perhaps... for a small number if may
>be workable, for 50+ it might get to be awkward and into hundreds I
>expect it to be unworkable) and then their onward requests to get to
>web sites would be under your control/monitoring.  So you would be in
>a position to restrict access as needed...  But you would be handling
>all the inbound / outbound traffic and that could get slow / costly.
>
>I have *not* done this type of thing myself, but might be able to 
>bounce some ideas...  my reply-to mail address is valid.

Hi John

I replied to the OP's post in alt.internet.providers.uk.  We do this,
it's controlled by user logon (i.e. user@domain) not by forced
hardware, which makes it very flexible in terms of what hardware is
used.  i.e. even if you have 10,000 users with a mix of DSL hardware
you can force them into the VPN and there's no way they can bypass it.

However, the OP didn't get back to me.

Jake
-- 
Address munged but valid - remove mungbeans.

On  19 Apr 2007, John F Kappler  wrote:

>Unfortunately, it is not practical to install monitoring software on
>their PCs for two reasons: firstly we cant get regular physical access
>to the equipment; and secondly, there would be nothing to stop the
>user removing such software whenever they felt like it.

Which would apply for many solutions, I expect.

>Anyone tried anything similar or can point me at an appropriate ISP?

I'd think that one of the ISPs offering business connections (such as
NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
the ISPs which send out routers configured for the customer's use, and
could force connections under your management.

If you requested some sort of VPN solution, then the traffic from your
customers would come into your own connection (so depends on how many
you plan to handle in this way, perhaps... for a small number if may
be workable, for 50+ it might get to be awkward and into hundreds I
expect it to be unworkable) and then their onward requests to get to
web sites would be under your control/monitoring.  So you would be in
a position to restrict access as needed...  But you would be handling
all the inbound / outbound traffic and that could get slow / costly.

I have *not* done this type of thing myself, but might be able to 
bounce some ideas...  my reply-to mail address is valid.

Should have added - how about posting in    uk.net.providers.aaisp

Even if they aren't in a position to provide it, may get some leads!

On Mon, 07 May 2007 14:56:54 +0100, NoNeedToKnow
<me@privacy.net.invalid> wrote:

>On  19 Apr 2007, John F Kappler  wrote:
>
>>Unfortunately, it is not practical to install monitoring software on
>>their PCs for two reasons: firstly we cant get regular physical access
>>to the equipment; and secondly, there would be nothing to stop the
>>user removing such software whenever they felt like it.
>
>Which would apply for many solutions, I expect.
>
>>Anyone tried anything similar or can point me at an appropriate ISP?
>
>I'd think that one of the ISPs offering business connections (such as
>NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
>the ISPs which send out routers configured for the customer's use, and
>could force connections under your management.
>
>If you requested some sort of VPN solution, then the traffic from your
>customers would come into your own connection (so depends on how many
>you plan to handle in this way, perhaps... for a small number if may
>be workable, for 50+ it might get to be awkward and into hundreds I
>expect it to be unworkable) and then their onward requests to get to
>web sites would be under your control/monitoring.  So you would be in
>a position to restrict access as needed...  But you would be handling
>all the inbound / outbound traffic and that could get slow / costly.
>
>I have *not* done this type of thing myself, but might be able to 
>bounce some ideas...  my reply-to mail address is valid.

Hi John

I replied to the OP's post in alt.internet.providers.uk.  We do this,
it's controlled by user logon (i.e. user@domain) not by forced
hardware, which makes it very flexible in terms of what hardware is
used.  i.e. even if you have 10,000 users with a mix of DSL hardware
you can force them into the VPN and there's no way they can bypass it.

However, the OP didn't get back to me.

Jake
-- 
Address munged but valid - remove mungbeans.

On  19 Apr 2007, John F Kappler  wrote:

>Unfortunately, it is not practical to install monitoring software on
>their PCs for two reasons: firstly we cant get regular physical access
>to the equipment; and secondly, there would be nothing to stop the
>user removing such software whenever they felt like it.

Which would apply for many solutions, I expect.

>Anyone tried anything similar or can point me at an appropriate ISP?

I'd think that one of the ISPs offering business connections (such as
NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
the ISPs which send out routers configured for the customer's use, and
could force connections under your management.

If you requested some sort of VPN solution, then the traffic from your
customers would come into your own connection (so depends on how many
you plan to handle in this way, perhaps... for a small number if may
be workable, for 50+ it might get to be awkward and into hundreds I
expect it to be unworkable) and then their onward requests to get to
web sites would be under your control/monitoring.  So you would be in
a position to restrict access as needed...  But you would be handling
all the inbound / outbound traffic and that could get slow / costly.

I have *not* done this type of thing myself, but might be able to 
bounce some ideas...  my reply-to mail address is valid.

Should have added - how about posting in    uk.net.providers.aaisp

Even if they aren't in a position to provide it, may get some leads!

On Mon, 07 May 2007 14:56:54 +0100, NoNeedToKnow
<me@privacy.net.invalid> wrote:

>On  19 Apr 2007, John F Kappler  wrote:
>
>>Unfortunately, it is not practical to install monitoring software on
>>their PCs for two reasons: firstly we cant get regular physical access
>>to the equipment; and secondly, there would be nothing to stop the
>>user removing such software whenever they felt like it.
>
>Which would apply for many solutions, I expect.
>
>>Anyone tried anything similar or can point me at an appropriate ISP?
>
>I'd think that one of the ISPs offering business connections (such as
>NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
>the ISPs which send out routers configured for the customer's use, and
>could force connections under your management.
>
>If you requested some sort of VPN solution, then the traffic from your
>customers would come into your own connection (so depends on how many
>you plan to handle in this way, perhaps... for a small number if may
>be workable, for 50+ it might get to be awkward and into hundreds I
>expect it to be unworkable) and then their onward requests to get to
>web sites would be under your control/monitoring.  So you would be in
>a position to restrict access as needed...  But you would be handling
>all the inbound / outbound traffic and that could get slow / costly.
>
>I have *not* done this type of thing myself, but might be able to 
>bounce some ideas...  my reply-to mail address is valid.

Hi John

I replied to the OP's post in alt.internet.providers.uk.  We do this,
it's controlled by user logon (i.e. user@domain) not by forced
hardware, which makes it very flexible in terms of what hardware is
used.  i.e. even if you have 10,000 users with a mix of DSL hardware
you can force them into the VPN and there's no way they can bypass it.

However, the OP didn't get back to me.

Jake
-- 
Address munged but valid - remove mungbeans.

On  19 Apr 2007, John F Kappler  wrote:

>Unfortunately, it is not practical to install monitoring software on
>their PCs for two reasons: firstly we cant get regular physical access
>to the equipment; and secondly, there would be nothing to stop the
>user removing such software whenever they felt like it.

Which would apply for many solutions, I expect.

>Anyone tried anything similar or can point me at an appropriate ISP?

I'd think that one of the ISPs offering business connections (such as
NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
the ISPs which send out routers configured for the customer's use, and
could force connections under your management.

If you requested some sort of VPN solution, then the traffic from your
customers would come into your own connection (so depends on how many
you plan to handle in this way, perhaps... for a small number if may
be workable, for 50+ it might get to be awkward and into hundreds I
expect it to be unworkable) and then their onward requests to get to
web sites would be under your control/monitoring.  So you would be in
a position to restrict access as needed...  But you would be handling
all the inbound / outbound traffic and that could get slow / costly.

I have *not* done this type of thing myself, but might be able to 
bounce some ideas...  my reply-to mail address is valid.

Should have added - how about posting in    uk.net.providers.aaisp

Even if they aren't in a position to provide it, may get some leads!

On Mon, 07 May 2007 14:56:54 +0100, NoNeedToKnow
<me@privacy.net.invalid> wrote:

>On  19 Apr 2007, John F Kappler  wrote:
>
>>Unfortunately, it is not practical to install monitoring software on
>>their PCs for two reasons: firstly we cant get regular physical access
>>to the equipment; and secondly, there would be nothing to stop the
>>user removing such software whenever they felt like it.
>
>Which would apply for many solutions, I expect.
>
>>Anyone tried anything similar or can point me at an appropriate ISP?
>
>I'd think that one of the ISPs offering business connections (such as
>NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
>the ISPs which send out routers configured for the customer's use, and
>could force connections under your management.
>
>If you requested some sort of VPN solution, then the traffic from your
>customers would come into your own connection (so depends on how many
>you plan to handle in this way, perhaps... for a small number if may
>be workable, for 50+ it might get to be awkward and into hundreds I
>expect it to be unworkable) and then their onward requests to get to
>web sites would be under your control/monitoring.  So you would be in
>a position to restrict access as needed...  But you would be handling
>all the inbound / outbound traffic and that could get slow / costly.
>
>I have *not* done this type of thing myself, but might be able to 
>bounce some ideas...  my reply-to mail address is valid.

Hi John

I replied to the OP's post in alt.internet.providers.uk.  We do this,
it's controlled by user logon (i.e. user@domain) not by forced
hardware, which makes it very flexible in terms of what hardware is
used.  i.e. even if you have 10,000 users with a mix of DSL hardware
you can force them into the VPN and there's no way they can bypass it.

However, the OP didn't get back to me.

Jake
-- 
Address munged but valid - remove mungbeans.

On  19 Apr 2007, John F Kappler  wrote:

>Unfortunately, it is not practical to install monitoring software on
>their PCs for two reasons: firstly we cant get regular physical access
>to the equipment; and secondly, there would be nothing to stop the
>user removing such software whenever they felt like it.

Which would apply for many solutions, I expect.

>Anyone tried anything similar or can point me at an appropriate ISP?

I'd think that one of the ISPs offering business connections (such as
NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
the ISPs which send out routers configured for the customer's use, and
could force connections under your management.

If you requested some sort of VPN solution, then the traffic from your
customers would come into your own connection (so depends on how many
you plan to handle in this way, perhaps... for a small number if may
be workable, for 50+ it might get to be awkward and into hundreds I
expect it to be unworkable) and then their onward requests to get to
web sites would be under your control/monitoring.  So you would be in
a position to restrict access as needed...  But you would be handling
all the inbound / outbound traffic and that could get slow / costly.

I have *not* done this type of thing myself, but might be able to 
bounce some ideas...  my reply-to mail address is valid.

Should have added - how about posting in    uk.net.providers.aaisp

Even if they aren't in a position to provide it, may get some leads!

On Mon, 07 May 2007 14:56:54 +0100, NoNeedToKnow
<me@privacy.net.invalid> wrote:

>On  19 Apr 2007, John F Kappler  wrote:
>
>>Unfortunately, it is not practical to install monitoring software on
>>their PCs for two reasons: firstly we cant get regular physical access
>>to the equipment; and secondly, there would be nothing to stop the
>>user removing such software whenever they felt like it.
>
>Which would apply for many solutions, I expect.
>
>>Anyone tried anything similar or can point me at an appropriate ISP?
>
>I'd think that one of the ISPs offering business connections (such as
>NewNet, which mentioned VPNs) or AAISP, could do this.  Almost any of
>the ISPs which send out routers configured for the customer's use, and
>could force connections under your management.
>
>If you requested some sort of VPN solution, then the traffic from your
>customers would come into your own connection (so depends on how many
>you plan to handle in this way, perhaps... for a small number if may
>be workable, for 50+ it might get to be awkward and into hundreds I
>expect it to be unworkable) and then their onward requests to get to
>web sites would be under your control/monitoring.  So you would be in
>a position to restrict access as needed...  But you would be handling
>all the inbound / outbound traffic and that could get slow / costly.
>
>I have *not* done this type of thing myself, but might be able to 
>bounce some ideas...  my reply-to mail address is valid.

Hi John

I replied to the OP's post in alt.internet.providers.uk.  We do this,
it's controlled by user logon (i.e. user@domain) not by forced
hardware, which makes it very flexible in terms of what hardware is
used.  i.e. even if you have 10,000 users with a mix of DSL hardware
you can force them into the VPN and there's no way they can bypass it.

However, the OP didn't get back to me.

Jake
-- 
Address munged but valid - remove mungbeans.