In ISA 2000, other than creating a routing rule under network configuration, how can you configure a site for direct access without configuring the client for direct access, meaning by client IP? A routing rule already exists but appears not to be working as intended, or I should say the error is occurring even though the routing rule was there already. Remember, these are SecureNAT clients, not WebBrowser or Firewall clients. John T eServices For You -----Original Message----- From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] Sent: Friday, September 09, 2005 5:19 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: Winsock 40006 error http://www.ISAserver.org (hee-hee) - John thinks his app knows how to behave on the wire... ..that's so cute...:-) If #1 doesn't work and the app doesn't provide any way for you to configure it directly, then yes, option 2 is your only recourse (short of beating the daylights out of the dev). _____ From: John Tolmachoff (Lists) [mailto:johnlist@xxxxxxxxxxxxxxxxxxx] Sent: Fri 9/9/2005 4:58 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: Winsock 40006 error http://www.ISAserver.org So, 2 things need to be done, correct? 1. The app needs to be configured to use the proxy via what, IE settings? 2. I need to create a policy allowing direct connection to that site. John T eServices For You > -----Original Message----- > From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] > Sent: Friday, September 09, 2005 4:36 PM > To: [ISAserver.org Discussion List] > Subject: [isalist] RE: Winsock 40006 error > > http://www.ISAserver.org > > This tells log entry you two things: > 1 - the app don't know diddly about proxy requests > 2 - the ISA policies don't allow direct HTTP connections to that site > (13301 sc-result) > > ------------------------------------------------------- > Jim Harrison > MCP(NT4, W2K), A+, Network+, PCG > http://isaserver.org/Jim_Harrison/ > http://isatools.org > Read the help / books / articles! > ------------------------------------------------------- > All mail to and from this domain is GFI-scanned.