Please export your rules. Your description is missing some critical information. -----Original Message----- From: Marcelo Santos [mailto:msantos_scs@xxxxxxxxxxxx] Sent: Tuesday, January 18, 2005 6:29 PM To: [ISAserver.org Discussion List] Subject: [isalist] Denying access based on Client IP http://www.ISAserver.org Hello for Everybody! My name is Marcelo, and I trying to deny internet access from some computers on my internal Lan. I created a Address Range with the IP range of computers (10.10.254.1~10.10.254.254), and I created a Deny Rule that is the first rule on ISA 2004. A user that have internet access by login basis is still able to surf on internet. Looking at monitoring screen, I see that ISA is granting access to that user using her or his username and password. This user is member of Windows group called "Internet_Access". The idea is block these computers to surf on internet, no matter membership that users belongs to. The Deny rule is before Allow Rule. Anyone knows what is wrong? Any help would be GREAT welcome. And sorry for my english... [Roll Eyes]<http://forums.isaserver.org/ubb/rolleyes.gif> Marcelo Santos. ________________________________ Yahoo! Acesso Grátis <http://br.rd.yahoo.com/mail/taglines/*http://br.acesso.yahoo.com/> - Internet rápida e grátis. Instale o discador do Yahoo! agora. ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx All mail to and from this domain is GFI-scanned.
