Hi Aman, If you require authentication for all rules, connections from SecureNAT clients will fail because they can't authenticate. HTH, Tom -----Original Message----- From: Aman Bedi [mailto:gurkirpal.bedi@xxxxxxxxxxx] Sent: Saturday, September 18, 2004 1:00 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: Internet explorer proxy settings http://www.ISAserver.org Hi Tom, Still waiting for a solution. Is there nothing in ISA 2004 , like to 2000 to say "drop HTTP traffic from Firewall and secureNAt clients" ? There has to be a way in 2004 to do something which we could do in 2000 I hope u read my problem below. Please suggest . Aman -----Original Message----- From: Aman Bedi [mailto:gurkirpal.bedi@xxxxxxxxxxx] Sent: Friday, September 17, 2004 5:43 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: Internet explorer proxy settings http://www.ISAserver.org Ok, What if they have another browser like , mozilla? So that means there is nothing in isa 2004 to drop http traffic from firewall client like in 2000 ? Thanks Scanbuy Inc Aman Bedi | Systems/Network Administrator 54 West 39th Street, 4th Floor, New York, NY 10018 | Fax +1(212) 202-4318 | Phone +1(212) 278-0178 ext 234 | www.scanbuy.com PRIVILEGED & CONFIDENTIAL The information contained in this email message is intended only for use of the person or entity to whom it is addressed. The contained information is CONFIDENTIAL and LEGALLY PRIVILEGED and exempt from disclosure under applicable laws. If you read this message and are not the addressee, you are notified that use, dissemination or reproduction of this message is prohibited. If you have received this message in error, please notify the sender immediately. ------------------------------------------------------------------------ ---- ------------------------------------------------------------------------ ---- ------------------------------------- -----Original Message----- From: John Tolmachoff (Lists) [mailto:johnlist@xxxxxxxxxxxxxxxxxxx] Sent: Friday, September 17, 2004 5:37 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: Internet explorer proxy settings http://www.ISAserver.org Force proxy settings through Group Policy. John Tolmachoff Engineer/Consultant/Owner eServices For You > -----Original Message----- > From: Aman Bedi [mailto:gurkirpal.bedi@xxxxxxxxxxx] > Sent: Friday, September 17, 2004 2:25 PM > To: [ISAserver.org Discussion List] > Subject: [isalist] RE: Internet explorer proxy settings > > http://www.ISAserver.org > > Thanks john , > > If I force no access for anonymous use, they will still be able to access > internet when they change proxy settings in IE , coz firewall client is > installed. > > I don't want this I don't want them to mess with the proxy settings. > Also surf control doesn't seem to work with firewall clients , even though > they pass credentials. > > As I said, we had a way to say "reject http request from firewall and > securnat clients " in isa 2000. > > Don't we have anything like this in ISA 2004 ? > If no, how else can I achieve what I want ? shouldn't be that > difficult..something which was available in ISA 2000 > > Thanks > > > Scanbuy Inc > ------------------------------------- > > > -----Original Message----- > From: John Tolmachoff (Lists) [mailto:johnlist@xxxxxxxxxxxxxxxxxxx] > Sent: Friday, September 17, 2004 5:15 PM > To: [ISAserver.org Discussion List] > Subject: [isalist] RE: Internet explorer proxy settings > > http://www.ISAserver.org > > Force no access for anonymous use. > > John Tolmachoff > Engineer/Consultant/Owner > eServices For You > > > > -----Original Message----- > > From: Aman Bedi [mailto:gurkirpal.bedi@xxxxxxxxxxx] > > Sent: Friday, September 17, 2004 1:54 PM > > To: [ISAserver.org Discussion List] > > Subject: [isalist] RE: Internet explorer proxy settings > > > > http://www.ISAserver.org > > > > > > I mean how to force users to use the proxy settings otherwise it wont work > > in ISA 2004 ? > > I mean as we use in HTTP redirector "reject hhtp requests from firewall > and > > securenat clients" in ISA 2000...how can same be accomplished in ISA 2004 > ? > > > > Please help so that I don't have to spend my Friday night (and maybe > > weekend) in the office. > > > > Scanbuy Inc > > Aman Bedi | Systems/Network Administrator > > 54 West 39th Street, 4th Floor, New York, NY 10018 | Fax +1(212) 202-4318 > | > > Phone +1(212) 278-0178 ext 234 | www.scanbuy.com > > > > PRIVILEGED & CONFIDENTIAL > > The information contained in this email message is intended only for use > of > > the person or entity to whom it is addressed. The contained information is > > CONFIDENTIAL and LEGALLY PRIVILEGED and exempt from disclosure under > > applicable laws. If you read this message and are not the addressee, you > are > > notified that use, dissemination or reproduction of this message is > > prohibited. If you have received this message in error, please notify the > > sender immediately. > > > ------------------------------------------------------------------------ ---- > > > ------------------------------------------------------------------------ ---- > > ------------------------------------- > > > > > > -----Original Message----- > > From: James May [mailto:Jmay@xxxxxxxxxxxxx] > > Sent: Thursday, September 16, 2004 3:32 PM > > To: [ISAserver.org Discussion List] > > Subject: [isalist] RE: Internet explorer proxy settings > > > > http://www.ISAserver.org > > > > Thanks for the reply yes I am setting up a domain. Jim M > > > > -----Original Message----- > > From: Steve Thamasett [mailto:steve.thamasett@xxxxxxx] > > Sent: Thursday, September 16, 2004 8:37 AM > > To: [ISAserver.org Discussion List] > > Subject: [isalist] RE: Internet explorer proxy settings > > > > > > http://www.ISAserver.org > > > > Are they in a domain? If so, you can use GPOs (IE Maintenance > > specifically) to fix the settings. > > > > > > Steve T. > > > > -----Original Message----- > > From: James [mailto:jmay@xxxxxxxxxxxxx] > > Sent: Thursday, September 16, 2004 12:38 PM > > To: [ISAserver.org Discussion List] > > Subject: [isalist] Internet explorer proxy settings > > > > http://www.ISAserver.org > > > > Hi all is there a way to setup the proxy settings in IE so the user > > cannot change them?? Thanks Jim > > > > ------------------------------------------------------ > > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > > ------------------------------------------------------ > > Other Internet Software Marketing Sites: > > World of Windows Networking: http://www.windowsnetworking.com Leading > > Network Software Directory: http://www.serverfiles.com No.1 Exchange > > Server Resource Site: http://www.msexchange.org Windows Security > > Resource Site: http://www.windowsecurity.com/ Network Security > > Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: > > http://www.ntfaxfaq.com > > ------------------------------------------------------ > > You are currently subscribed to this ISAserver.org Discussion List as: > > steve.thamasett@xxxxxxx To unsubscribe visit > > http://www.webelists.com/cgi/lyris.pl?enter=isalist > > Report abuse to listadmin@xxxxxxxxxxxxx > > > > > > ------------------------------------------------------ > > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > > ------------------------------------------------------ > > Other Internet Software Marketing Sites: > > World of Windows Networking: http://www.windowsnetworking.com Leading > > Network Software Directory: http://www.serverfiles.com No.1 Exchange > > Server Resource Site: http://www.msexchange.org Windows Security > > Resource Site: http://www.windowsecurity.com/ Network Security Library: > > http://www.secinf.net/ Windows 2000/NT Fax Solutions: > > http://www.ntfaxfaq.com > > ------------------------------------------------------ > > You are currently subscribed to this ISAserver.org Discussion List as: > > jmay@xxxxxxxxxxxxx To unsubscribe visit > > http://www.webelists.com/cgi/lyris.pl?enter=isalist > > Report abuse to listadmin@xxxxxxxxxxxxx > > > > ------------------------------------------------------ > > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > > ------------------------------------------------------ > > Other Internet Software Marketing Sites: > > World of Windows Networking: http://www.windowsnetworking.com > > Leading Network Software Directory: http://www.serverfiles.com > > No.1 Exchange Server Resource Site: http://www.msexchange.org > > Windows Security Resource Site: http://www.windowsecurity.com/ > > Network Security Library: http://www.secinf.net/ > > Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com > > ------------------------------------------------------ > > You are currently subscribed to this ISAserver.org Discussion List as: > > gurkirpal.bedi@xxxxxxxxxxx > > To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist > > Report abuse to listadmin@xxxxxxxxxxxxx > > > > > > > > ------------------------------------------------------ > > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > > ------------------------------------------------------ > > Other Internet Software Marketing Sites: > > World of Windows Networking: http://www.windowsnetworking.com > > Leading Network Software Directory: http://www.serverfiles.com > > No.1 Exchange Server Resource Site: http://www.msexchange.org > > Windows Security Resource Site: http://www.windowsecurity.com/ > > Network Security Library: http://www.secinf.net/ > > Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com > > ------------------------------------------------------ > > You are currently subscribed to this ISAserver.org Discussion List as: > > gurkirpal.bedi@xxxxxxxxxxx > > To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist > > Report abuse to listadmin@xxxxxxxxxxxxx > > > > > > > > ------------------------------------------------------ > > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > > ------------------------------------------------------ > > Other Internet Software Marketing Sites: > > World of Windows Networking: http://www.windowsnetworking.com > > Leading Network Software Directory: http://www.serverfiles.com > > No.1 Exchange Server Resource Site: http://www.msexchange.org > > Windows Security Resource Site: http://www.windowsecurity.com/ > > Network Security Library: http://www.secinf.net/ > > Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com > > ------------------------------------------------------ > > You are currently subscribed to this ISAserver.org Discussion List as: > > johnlist@xxxxxxxxxxxxxxxxxxx > > To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist > > Report abuse to listadmin@xxxxxxxxxxxxx > > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > World of Windows Networking: http://www.windowsnetworking.com > Leading Network Software Directory: http://www.serverfiles.com > No.1 Exchange Server Resource Site: http://www.msexchange.org > Windows Security Resource Site: http://www.windowsecurity.com/ > Network Security Library: http://www.secinf.net/ > Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion List as: > gurkirpal.bedi@xxxxxxxxxxx > To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist > Report abuse to listadmin@xxxxxxxxxxxxx > > > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > World of Windows Networking: http://www.windowsnetworking.com > Leading Network Software Directory: http://www.serverfiles.com > No.1 Exchange Server Resource Site: http://www.msexchange.org > Windows Security Resource Site: http://www.windowsecurity.com/ > Network Security Library: http://www.secinf.net/ > Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion List as: > johnlist@xxxxxxxxxxxxxxxxxxx > To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist > Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: gurkirpal.bedi@xxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: gurkirpal.bedi@xxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx