Hey guys, I seems strange to me that anyone would want to use MAC address control when one of the major advantages of using an ISA firewall is user/group based access control. Its pretty easy to spoof your MAC address. But as Dave said, if you want to use MAC based control, just create static entries in DHCP and use Group Policy to prevent users from changing their addressing schemes. HTH, Tom Thomas W Shinder www.isaserver.org/shinder ISA Server and Beyond: http://tinyurl.com/1jq1 Configuring ISA Server: http://tinyurl.com/1llp -----Original Message----- From: David V. Dellanno [mailto:ddellanno@xxxxxxxxxx] Sent: Wednesday, June 18, 2003 3:10 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: can we have mac-addresses as client address sets for acl in isa http://www.ISAserver.org I believe ISA doesn't support the mac-addresses but the alternative solution would be at your hard working MS DHCP server and make IP reservations to the mac-addresses. Then at your beloved ISA server you can create under Policy Elements your Client Address Sets. Sorry that I have no input about the comparison of the Squidy :-) -----Original Message----- From: Rajiv Kulkarni [mailto:rajiv_nag@xxxxxxxxx] Sent: Wednesday, June 18, 2003 4:03 PM To: [ISAserver.org Discussion List] Subject: [isalist] can we have mac-addresses as client address sets for acl in isa http://www.ISAserver.org Hello Friends, I wanted to know whether we could configure mac-address based client-address sets in isa.if not what prevents the configuration in isa. Also i have observed that a squid proxy has this facility (of mac-address based acl) and also that the responses from the squid proxy is very fast compared to isa..even when we have only ONE TEST USER. can anybody advice me please?? thank you PS: I will still remain as passionate as ever for MS-products...it's just that i sometimes debate with my unix collegues often wrt MS products. __________________________________ Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: ddellanno@xxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')