To control access to the Intranet by user group, can i have isa clients as web proxy - I'm hearing conflicting info on this. If ISA is in cache mode do I need to the clients to be web proxy clients and firewall clients??