ISA blocks inbound pings; that a good thing, since one of the simplest DoS attacks is a ping flood. If you're trying to get LAT hosts to ping outbound, put a check in "Enable IP routing" in IIP Packet Filters" properties. Jim Harrison MCP(NT4, W2K), A+, Network+, PCG ----- Original Message ----- From: "Brian Jones" <bjones@xxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Friday, November 09, 2001 00:32 Subject: [isalist] RE: ISA disables public ip addresses http://www.ISAserver.org NO I have done that all internal machines can ping the internal address OK, its all the external addresses we have for web hosting etc that become disabled eg. if you have a ping ... -t command and stop the service the ipaddress becomes alive again. Any ideas? -----Original Message----- From: Roy Morden [mailto:roy@xxxxxxxxxxxxxxxxxxx] Sent: 09 November 2001 08:20 To: [ISAserver.org Discussion List] Subject: [isalist] RE: ISA disables public ip addresses http://www.ISAserver.org I take it you mean internally, in which case create a client set for the addresses you want to use. Roy Morden Network Manager Baines School roy@xxxxxxxxxxxxxxxxxxx ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: bjones@xxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')