This seems like it should be a simple problem but I am stumped. We have two servers that are located in our DMZ, between our ISA Server and our hardware firewall. Currently I am testing the ISA Server and have it NOT to "Ask unauthenticated users for identification." Wtih this option secure NAT clients are able to access servers in the DMZ and so are web proxy clients. However, if I enable "Ask unauthenticated users for identification" I am not able to access servers in the DMZ. There is no rule against accessing them and I have not made any changes to the LAT or LDT. Weird thing is that even if I do provide authentication info when prompted I get Error 403 - Access Denied. Anyone have any suggestions? thank you, Christopher Rodriguez Director of Information Technology Trinity Episcopal School for Ministry www.tesm.edu 724.266.3838