YOu might want to watch that CuteFTP program. Older versions try to get out on every port on your firewall to get to the advertisement servers. It is basically mapping the inside of your firewall outbound ports. I had a Raptor box where it just went up the port list from 1024 on up. At the time I was only letting certain outbound ports. This is standard. The thing was that until I got rid of CuteFTP on that workstation that it probably had mapped my inbound/outbound dynamic ports on my firewall. Look at your logs to see if it was doing the same thing. This is similiar to spyware. -----Original Message----- From: Sullivan, Neil (CALBRIS) [mailto:Neil.Sullivan@xxxxxxxxxxxxxxxxxxxxxxx] Sent: Thursday, January 17, 2002 6:10 PM To: [ISAserver.org Discussion List] Subject: [isalist] An ftp issue fixed http://www.ISAserver.org List folk, Just thought I'd share the result of a couple of days of trying to get a cuteftp connection happening through out Cache only ISA box. trying to get an external ftp site would come up with 10060 timeouts or message boxes about protocol violations. We have Symantec Web Security (Anti Virus Only) running on the ISA as the upstream proxy. Turns out if I set up a routing rule to bypass this SWS proxy for my destination ftp site it works a treat. just another little snippet that may save someone some time.. cheers Neil ---------------------------------------------- This email (including all attachments) may be confidential. If you are not the intended recipient, you must not use the information contained in it. If you have received this email in error, please delete the email and notify the sender. ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: p.drumm@xxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')