You can block the specfifc ports those programs use but the problem you will find is that they will be able to use standard http to work. There's an article on the website (isaserver) about blocking applications that hijack http by User-Agent. You should be able to use both strategies to do it effectively. Greg Mulholland ATM is for banks! -----Original Message----- From: Wittaya Lee [mailto:wittalee@xxxxxxxxxxxxxxxxxx] Sent: Sunday, January 29, 2006 12:43 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: how to block KaZaa, Bit, and DAP in ISA2004 std. http://www.ISAserver.org Hi Greg, I agree with you that to prevent user to install any programs that are not the business programs at first place is the best idea. But, how can I do to block those apps because things are not go well as we expect. Something like an internal politic always happen. Thanks for you info. Witt ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Visit TechGenix.com for more information about our other sites: http://www.techgenix.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: greg@xxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx