Auto Detection The behavior of client auto detection as configured on ISA Server has been modified in this service pack. With Service Pack 2, a request has to match both the IP address range and the server name or domain name provided on the Web browser tab to bypass the proxy. So, I need to configure the Web browser config in the ISA firewall console to include BOTH the domain name AND the IP address of the destination host that needs Direct Access? I hope I'm reading this wrong, because this completely breaks the Direct Access mechanism. Tom Thomas W Shinder, M.D. Site: www.isaserver.org <http://www.isaserver.org/> Blog: http://spaces.msn.com/members/drisa/ Book: http://tinyurl.com/3xqb7 <http://tinyurl.com/3xqb7> MVP -- ISA Firewalls