The company I work for has a client that is a small public library. this is a domain environment. The last time I was onsite they asked me about limiting 2 of their computers to a single website. these computers are for patrons to access the library's catalog system through the library's website. They are reporting teenagers are using the 2nd catalog machine to access inappropriate websites. The library wants these machines to only be able to access the library website and no others. I know this is possible, im just not sure how to do it in their environment. I have access to all accounts, so i can make changes to group policy if need be. if anyone can help me solve this it would be greatly appreciated. I have tried editing the hosts file with no luck. Their group policy had windows firewall disabled, so changed it so that i could enable it on those machines, but then didnt find a way to limit access with windows firewall. Their server is windows server 2012 and the workstations are windows xp.