Re: Proxy settings

  • From: "Jim Harrison" <jim@xxxxxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Wed, 6 Oct 2004 15:29:00 -0700

As you've discovered, it's a crapshoot.
If the application understands how to find a proxy, it may succeed and act as a 
proxy client.
If the firewall client is installed and it has no rules denying this 
application, it'll allow it to act as a web proxy or Firewall 
client.
If the firewall client has a rule denying access through it, then the app may 
act as a SecureNAT client.

  Jim Harrison
  MCP(NT4, W2K), A+, Network+, PCG
  http://isaserver.org/Jim_Harrison/
  http://isatools.org
  Read the help / books / articles!

----- Original Message ----- 
From: "Aman Bedi" <gurkirpal.bedi@xxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Wednesday, October 06, 2004 15:13
Subject: [isalist] Re: Proxy settings


http://www.ISAserver.org

Also ,

Something to add

1)MS Visual Interdev does not seem to pick the settings from the automatic
configuration script. (proxy client)

2)It takes the manual proxy settings if specified in IE, but cannot
authenticate to ISA using integrated authentication. Also for basic
authentication, it does not prompt for username and passwd. Fails with an
error.

3)if you remove secureNAT client( remove default gateway) ...everything is
solved with firewall and proxy client.

- Interdev works great with Firewall client settings. Only autoscript is
enabled in proxy settings.
- internal IPs and external IPs and domain names work for internal web
sites.
- browsing is much faster.

A lot of hit and trial involved.

A question .. what is the order of clients taken up, if it configured as all
three - securenat , proxy and firewall ... does the client try for proxy
settings, if not found tries for securenat, if not found tries for firewall
client ?? or the order is different. I am confused as removing securenat
client solved most of the issues I was facing till now .


Thanks




Scanbuy Inc
Aman Bedi | Systems/Network Administrator (MCP, MCSD, MCSA 2000, MCSA 2003)
54 West 39th Street, 4th Floor, New York, NY 10018 | Fax +1(212) 202-4318 |
Phone +1(212) 278-0178 ext 234 | www.scanbuy.com

PRIVILEGED & CONFIDENTIAL
The information contained in this email message is intended only for use of
the person or entity to whom it is addressed. The contained information is
CONFIDENTIAL and LEGALLY PRIVILEGED and exempt from disclosure under
applicable laws. If you read this message and are not the addressee, you are
notified that use, dissemination or reproduction of this message is
prohibited. If you have received this message in error, please notify the
sender immediately.
----------------------------------------------------------------------------
----------------------------------------------------------------------------
-------------------------------------


-----Original Message-----
From: Aman Bedi [mailto:gurkirpal.bedi@xxxxxxxxxxx]
Sent: Wednesday, October 06, 2004 5:19 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: Proxy settings

http://www.ISAserver.org

Another funny thing Jim,

Public ip and domain name wont work in IE as I said ..
But open my computer... type in the public ip or domain name and it works..(
I think that is IE too, when the page opens)
Strange

Anyways thanks

Scanbuy Inc
Aman Bedi | Systems/Network Administrator (MCP, MCSD, MCSA 2000, MCSA 2003)
54 West 39th Street, 4th Floor, New York, NY 10018 | Fax +1(212) 202-4318 |
Phone +1(212) 278-0178 ext 234 | www.scanbuy.com

PRIVILEGED & CONFIDENTIAL
The information contained in this email message is intended only for use of
the person or entity to whom it is addressed. The contained information is
CONFIDENTIAL and LEGALLY PRIVILEGED and exempt from disclosure under
applicable laws. If you read this message and are not the addressee, you are
notified that use, dissemination or reproduction of this message is
prohibited. If you have received this message in error, please notify the
sender immediately.
----------------------------------------------------------------------------
----------------------------------------------------------------------------
-------------------------------------

-----Original Message-----
From: Jim Harrison [mailto:jim@xxxxxxxxxxxx]
Sent: Wednesday, October 06, 2004 4:31 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: Proxy settings

http://www.ISAserver.org

Quit trying to make IE use the published IP.
If the resource is internal, keep it that way.


  Jim Harrison
  MCP(NT4, W2K), A+, Network+, PCG
  http://isaserver.org/Jim_Harrison/
  http://isatools.org
  Read the help / books / articles!

----- Original Message ----- 
From: "Aman Bedi" <gurkirpal.bedi@xxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Wednesday, October 06, 2004 12:17
Subject: [isalist] Proxy settings


http://www.ISAserver.org



Hi guys ,



I am facing an issue,

When in IE I use proxy server settings . like manually specify the ISA
server and the port, My INTERNAL sites work well with the public IP and site
name. But When I use the automatic configuration script, then IE doesn't
show the internal sites with public IP or site name. it works only with
local IP then.



How can I fix this. ??

Shouldn't using the script give same functionality as using the proxy server
name manually ?



Please suggest



TIA


Aman Bedi | Systems/Network Administrator (MCP, MCSD, MCSA 2000, MCSA 2003)
54 West 39th Street, 4th Floor, New York, NY 10018 | Fax +1(212) 202-4318 |
Phone +1(212) 278-0178 ext 234 | www.scanbuy.com

PRIVILEGED & CONFIDENTIAL
The information contained in this email message is intended only for use of
the person or entity to whom it is addressed. The contained information is
CONFIDENTIAL and LEGALLY PRIVILEGED and exempt from disclosure under
applicable laws. If you read this message and are not the addressee, you are
notified that use, dissemination or reproduction of this message is
prohibited. If you have received this message in error, please notify the
sender immediately.
----------------------------------------------------------------------------
----------------------------------------------------------------------------
-------------------------------------





------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx


------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
gurkirpal.bedi@xxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx



------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
gurkirpal.bedi@xxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx



------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as: 
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx



Other related posts: