Hi Tiago, I prefer to disable the HTTP redirector because all clients should be configured as Web Proxy clients, so you don't need it. In addition, there are some access control issues that Stefaan Pouselle discovered and wrote about. Check his article on this over on the www.isaserver.org site. Thanks! Tom PS -- when are you sending me a ticket to Brazil so that I can an "expert with a bunch of slides". BTW -- who has better weather, Brazil or Argentina? _____ From: Tiago de Aviz [mailto:Tiago@xxxxxxxxxxxxxxx] Sent: Saturday, December 06, 2003 4:55 PM To: [ISAserver.org Discussion List] Subject: [isalist] Re: Bandwidth Policies http://www.ISAserver.org When I see that is my pipe is getting full, I check my TrafMeter. Thanks for the link Tom ! It's a great deal for monitoring your link's usage. Also a great help for configuring ISA's bandwidth policies. It's definitely worth its 50 bucks. www.trafmeter.com <http://www.trafmeter.com/> But why Tom, why disable the HTTP redirector? Can you say that in public? ;) Tiago de Aviz SoftSell (41) 340-2363 www.softsell.com.br _____ From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxxxxxxxxx] Sent: sábado, 6 de dezembro de 2003 18:52 To: [ISAserver.org Discussion List] Subject: [isalist] Re: Bandwidth Policies http://www.ISAserver.org Hi Glenn, You might want to run NetMon on the external interface and check the packet filter logs to see if you're being attacked. It could be that the T1 is just pegged. Make sure your Web Proxy clients are configured to use the autoconfiguration script and that DNS server settings on the ISA firewall are correct. And while not required, I highly recommend disabling the HTTP redirector (for perfomance and security reasons). HTH, Tom