I have a 2-node ISA Server 2006 NLB used for outbound proxy requests, and have just discovered that there is at least some proxy traffic being targeted towards the private addresses used by the NLB NIC on these servers. These servers have several NICs and IP's. I am seeing traffic being sent to port 8080 on the IP address that is assigned to the NIC used in the NLB for each of the servers. The "advertised" IP address for the NLB points to the internal interface for the servers, and I am struggling to see where/how the computers in question are getting the NLB IP's from. The traffic for the NLB's is private and not routable on our network. I would not be surprised to find that I have something configured wrongly, but I'm only seeing this for a small percentage of clients that use this proxy. I used MS Network Monitor on one of the machines from which I am seeing the traffic, but it didn't really help clear anything up for me. Can anyone advise of a misconfiguration in ISA that would cause traffic to be targeted to the NLB address, or any other reason? Bill Mayo