Um, try the following: Within the Firewall Client configuration, add a new application called "kazaa" and set the disable flag to 1. This should tell all the firewall clients not to permit the Kazaa application from even getting out of the individual workstations. Cheers William R. -----Original Message----- From: Thapeli Matsabo - CPX Mngd Services [mailto:ThapeliM@xxxxxxxxxxxxxxxxxxxx] Sent: 22 January 2003 12:05 PM To: [ISAserver.org Discussion List] Subject: [isalist] blocking connection by application http://www.ISAserver.org Hi, I have a lot of users on my network that connect to P2P sites (i.e Kazaa)using firewall client. On my logs I see all kazaa connections going to different IP's. This makes blocking by IP too much a hassle. Is there a way I can block by application. Since ISA already picks up the application (kazaa.exe). Regards, Thaps ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Exchange Server Resource Site: http://www.msexchange.org/ Windows Security Resource Site: http://www.windowsecurity.com/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: robertson.william@xxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')