You may want to give your school guests – parents, visiting teachers, visiting students, etc. – limited access to the school’s internet. But the guest’s network access would need to be governed by the school’s web filtering policies and block access to inappropriate content and malicious websites.
To begin, you need to set up the Guest Network Policy on a separate IP address. It is important that this public IP address will not be shared by other regular members of the schools such as students, staff etc. because the Guest Network Policy would override any other filtering policy set up for that IP address, and become applicable for all users. To avoid such conflict of interest, it is recommended that schools with at least two different public IP addresses set up Guest Network Policies.
1. All guest network DNS and HTTP/S traffic need to use this same public IP address.
2. All guest network traffic can NOT use the same public IP address as non-guest traffic.
3. Set DHCP scope for the guest network to use Securly DNS servers IP addresses only.
Note that guest network DNS traffic can not mix with internal DNS servers using non-guest traffic.
To set up Guest Network Policy:
- Contact Securly Support at email@example.com and request for the Guest Network Policy to be enabled. Please include the public IP addresses you would like to use for this service.
- Once the Guest Network Policy is enabled, it would show up on the admin dashboard under the Policy Editor tab.
Note: Guest Network Policy cannot be deleted or disabled from the admin dashboard by the school admin. It can only be disabled by the Securly Support team.
- The school admin can change the blocked categories by navigating to Policy Editor >> Guest Network Policy.
How it works
- Guest Network Policy does not require any certs to be deployed for web filtering to work for guests. All traffic would be filtered and blocked according to Guest Network Policy and Global Allow/Deny list.
- Guest Network Policy will only log and display the blocked content that a user attempted to visit, under the Reports tab.
- You can whitelist and blacklist web sites for the Guest Network Policy as and when required. However, wildcards are not supported.
- The YouTube Restricted Mode can be enabled all guest users
- .Guest Network Policy defaults safe search for Google and Bing search engines.
Please note that the Guest Network Policy would not support:
- User based policies
- Keyword scanning
- Yahoo search
- Forced login
- Mapping of OUs
- Display of devices signed under GNP on the geolocation map
- Restricting Google logins to personal accounts