ISA Server filtering

TheMSsForum.com: The Microsoft Software Forum

By default network users can access anything through ISA using Allow all
rule. It is possible to
do the reverse and block everything and only enable, say HTTP access only
rather than disabling
the all protocols that are not required?

If so what protocols would I need to allow only have access to http web
sites?
Top

Re: ISA Server filtering by Chad

Chad
Wed Jan 28 23:26:50 CST 2004

Hi John -

By default, ISA is locked down. IOW, you have to have an access rule in
place to allow anything out the door. No rules = nothing gets out. If it
were me, I would simply disable the BackOffice Internet Access Protocol
Rule, that way you can get back to your original settings just by
re-enabling the rule. Then, create a new protocol rule that only allows
HTTP & HTTPS traffic for members of the BackOffice Internet Users group.
This will result in users only having web access.

HTH!

--
Chad A. Gross [SBS-MVP]

SBS ROCKS!!!

"John" <john@nospam.com.au> wrote in message
news:e1r%23KKg5DHA.1052@TK2MSFTNGP12.phx.gbl...
> By default network users can access anything through ISA using Allow all
> rule. It is possible to
> do the reverse and block everything and only enable, say HTTP access only
> rather than disabling
> the all protocols that are not required?
>
> If so what protocols would I need to allow only have access to http web
> sites?
>
>
>


Top

Re: ISA Server filtering by SuperGumby

SuperGumby
Thu Jan 29 01:25:27 CST 2004

or possibly create a new group 'Restricted Internet Users' and move people
out of BOIU into RIU.

and of course create rules which apply to RIU.

"Chad A Gross [SBS-MVP]" <chad.gross@laytonflower.nospam.com> wrote in
message news:uLW35mi5DHA.2432@TK2MSFTNGP10.phx.gbl...
> Hi John -
>
> By default, ISA is locked down. IOW, you have to have an access rule in
> place to allow anything out the door. No rules = nothing gets out. If it
> were me, I would simply disable the BackOffice Internet Access Protocol
> Rule, that way you can get back to your original settings just by
> re-enabling the rule. Then, create a new protocol rule that only allows
> HTTP & HTTPS traffic for members of the BackOffice Internet Users group.
> This will result in users only having web access.
>
> HTH!
>
> --
> Chad A. Gross [SBS-MVP]
>
> SBS ROCKS!!!
>
> "John" <john@nospam.com.au> wrote in message
> news:e1r%23KKg5DHA.1052@TK2MSFTNGP12.phx.gbl...
> > By default network users can access anything through ISA using Allow all
> > rule. It is possible to
> > do the reverse and block everything and only enable, say HTTP access
only
> > rather than disabling
> > the all protocols that are not required?
> >
> > If so what protocols would I need to allow only have access to http web
> > sites?
> >
> >
> >
>
>


Top