RE: Anonymous access question
- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Fri, 24 Sep 2004 15:48:38 -0500
Hi Tim,
Normal Web Proxy behavior. Check for 407 at www.isaserver.org
HTH,
Tom
www.isaserver.org/shinder <http://www.isaserver.org/shinder>
Get the book!
Tom and Deb Shinder's Configuring ISA Server 2004
http://tinyurl.com/3xqb7 <http://tinyurl.com/3xqb7>
MVP -- ISA Firewalls
-----Original Message-----
From: tim S [mailto:tim724342@xxxxxxxxx]
Sent: Friday, September 24, 2004 3:40 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Anonymous access question
http://www.ISAserver.org
I looked at my ISA 2000 server's log. I found that web requests
always first tries the anonymous login and then domain\username
authentication. I enabled "require authentication for clients that
doesn't authenticate" option on the outgoing web listener tab. I have
the default allow all site and all content rule enabled. Here is the
log:
10.0.0.162 anonymous Mozilla/4.0 (compatible; MSIE 6.0; Windows
NT 5.1) N 2004-09-24 20:00:47 ISA2K - www.mit.edu - - -
10.0.0.162 anonymous Mozilla/4.0 (compatible; MSIE 6.0; Windows
NT 5.1) N 2004-09-24 20:00:47 ISA2K - www.mit.edu - - -
10.0.0.162 acdc\labuser1 Mozilla/4.0 (compatible; MSIE 6.0;
Windows NT 5.1) Y 2004-09-24 20:00:47 ISA2K - www.mit.edu - All outbound
Allow rule
10.0.0.162 acdc\labuser1 Mozilla/4.0 (compatible; MSIE 6.0;
Windows NT 5.1) Y 2004-09-24 20:00:47 ISA2K - www.mit.edu - All outbound
Allow rule
10.0.0.162 acdc\labuser1 Mozilla/4.0 (compatible; MSIE 6.0;
Windows NT 5.1) Y 2004-09-24 20:00:47 ISA2K - www.mit.edu - All outbound
Allow rule
10.0.0.162 acdc\labuser1 Mozilla/4.0 (compatible; MSIE 6.0;
Windows NT 5.1) Y 2004-09-24 20:00:47 ISA2K - www.mit.edu - All outbound
Allow rule
Is there anyway I can make the clients avoid anonymous
authentication?
Some of my clients are SecureNAT and most of them are Web proxy,
although shortly I will force all of them to use the web proxy. HTTP
redirector is set to allow web request to go directly to the destination
server. I had the redirector to drop all the web requests from firewall
and secureNAT clients, but I have virus updating service that downloads
virus defination files everyday midnight. It failed to do that with
this setup. So I set the redirector to access the server directly. Any
solution to this problem is greatly appreciated.
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
------------------------------------------------------ List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server
Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server
FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------ Other Internet
Software Marketing Sites: World of Windows Networking:
http://www.windowsnetworking.com Leading Network Software Directory:
http://www.serverfiles.com No.1 Exchange Server Resource Site:
http://www.msexchange.org Windows Security Resource Site:
http://www.windowsecurity.com/ Network Security Library:
http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------ You are currently
subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to
listadmin@xxxxxxxxxxxxx
Other related posts: