Hi Lee To the best of my knowledge, the FW Client's connectivity status can not be controlled by anything happening on the ISA Server itself (such as a Site & Content or Protocol Rule) The little I do know about the FW Client is that if you are using WPAD then you need to make sure your DNS entries are up to date and correct. Personally, I don't use WPAD, but I did once have a problem with the FW Client losing connection with my ISA Server... but for the life of me I cannot remember how I resolved the issue. I will let you know if I do remember later... Cheers William R. -----Original Message----- From: Lian Wee LOO [mailto:lwloo@xxxxxxx] Sent: 23 September 2003 07:17 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: Site and Content Rule for WindowsUpdate & OfficeUpdate website http://www.ISAserver.org Anyone know why my firewall client keep disconnected when the below mentioned rules is setup or enabled? best regards, lwloo 2k'3 -----Original Message----- From: William Robertson [mailto:robertson.william@xxxxxxxxxxxxxx] Sent: 2003年9月23日 13:11 To: [ISAserver.org Discussion List] Subject: [isalist] RE: Site and Content Rule for WindowsUpdate & OfficeUpdate website http://www.ISAserver.org Hi J On MS's website, there is a SUS FAQ that mentions the following websites need to be open for downloads: Q. What URLs need to be allowed at the firewall in order for synchronization to occur? A. You need to allow access to the following URLs: http://www.msus.windowsupdate.com http://download.windowsupdate.com http://cdm.microsoft.com Now I know this is for SUS specifically, but maybe if you add the *.windowsupdate.com it might work? I see that you've got *.microsoft and *.windowsupdate.microsoft.com, but you don't have *.windowsupdate.com Check out http://www.microsoft.com/windows2000/windowsupdate/sus/susfaq.asp if you need to. Cheers William R. -----Original Message----- From: jperez@xxxxxxxxxxxx [mailto:jperez@xxxxxxxxxxxx] Sent: 23 September 2003 00:10 AM To: [ISAserver.org Discussion List] Subject: [isalist] Site and Content Rule for WindowsUpdate & OfficeUpdate website http://www.ISAserver.org I'm still trying and trying to create a site and content rule for access only to WindowsUpdate and Office Update web page for some restricted users. I create a rule with this sites and Ip's: *.microsoft.com, *.windowsupdate.microsoft.com, *.officeupdate.microsoft.com, *.v4.windowsupdate.microsoft.com, *.akamai.net, windowsupdate.microsoft.com, officeupdate.microsoft.com, windowsupdate.microsoft.com.edgesuite.net, 63.211.66.116, 63.211.66.118, 63.211.66.126, 63.211.66.124, 63.211.66.110, 63.211.66.131, 63.211.66.123, 63.211.66.101, 65.54.206.33, 63.210.164.71, but it doesn't works, when I try to access the web page shows me totally the updates but when I try to select, download and install one of them shows me a message that the updates can't be installed in color red. If I leave the rule to access to all sites (without any restrictions) it shows me all the updates for the machine, download and installs without any problem. I configure the Settings of the IE with the option of Use HTTP 1.1 through proxy connections but it doesn't works either as someone of you suggest me, also I already install the ISA Server Proxy Client in the machine I want to update with this rule. When I select the updates to install, read the License Agreement to install and shows me the screen that includes the download progress of the updates disappers very fast and it doesn't download anything, then display the "Update error screen" whith the letters in color red that I explain before. I think that my configuration error is in the process of download the updates to the machine, in this part I feel that my site and content rule it doesn't works the right way. When that screen appears is the problem, in the download process to install them in the machine. What more else I need to include in the rule for gain full access to download updates for the windowsupdate and officeupdate web pages in the ISA Server or in the Proxy Client. Thanks in advance. Best Regards and please help me !!! ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: robertson.william@xxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') --------------------------------------------------------------------- Everything in this e-mail and attachments relating to the official business of Columbus Stainless is proprietary to the company. It is confidential, legally privileged and protected by law. Columbus Stainless does not own and endorse any other content. Views and opinions are those of the sender unless clearly stated as being that of Columbus Stainless. The person addressed in the e-mail is the sole authorised recipient. Please notify the sender immediately if it has unintentionally reached you and do not read, disclose or use the content in any way. Whilst all reasonable steps are taken to ensure the accuracy and integrity of information and data transmitted electronically and to preserve the confidentiality thereof, no liability or responsibility whatsoever is accepted if information or data is,for whatever reason, corrupted or does not reach its intended destination. --------------------------------------------------------------------- ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: lwloo@xxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: robertson.william@xxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') --------------------------------------------------------------------- Everything in this e-mail and attachments relating to the official business of Columbus Stainless is proprietary to the company. It is confidential, legally privileged and protected by law. Columbus Stainless does not own and endorse any other content. Views and opinions are those of the sender unless clearly stated as being that of Columbus Stainless. The person addressed in the e-mail is the sole authorised recipient. Please notify the sender immediately if it has unintentionally reached you and do not read, disclose or use the content in any way. Whilst all reasonable steps are taken to ensure the accuracy and integrity of information and data transmitted electronically and to preserve the confidentiality thereof, no liability or responsibility whatsoever is accepted if information or data is,for whatever reason, corrupted or does not reach its intended destination. ---------------------------------------------------------------------