Tom, Thanks for answer. So this means if only firewall client is installed and machine is a secure NAT, unbinding the web proxy filter makes it a direct access. Don't you think this is easier to do if only fwc is installed and machine is a snat compared to http://isaserver.org/pages/search.asp?query=direct+access for web sites which have problems using proxy? -----Original Message----- From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx] Sent: Monday, May 02, 2005 7:06 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: none proxy http://www.ISAserver.org Hi Ara, Web proxy clients remote their connections to the Web proxy filter, so the Web proxy filter doesn't need to be bound to the HTTP protocol for them. SecureNAT and Firewall clients, however, will not be directed to the Web proxy component. HTH, Tom www.isaserver.org/shinder Tom and Deb Shinder's Configuring ISA Server 2004 http://tinyurl.com/3xqb7 MVP -- ISA Firewalls -----Original Message----- From: Ara [mailto:ara@xxxxxxxxxxxxx] Sent: Monday, May 02, 2005 9:02 PM To: [ISAserver.org Discussion List] Subject: [isalist] none proxy http://www.ISAserver.org Hello everyone I have been asked this question but I don't know the answer. If you create an http access rule from inside to external and unbind the web proxy filter from properties of the rule, does that make the connection no to go through proxy and become direct access? Also combine the case having firewall client installed or having browser pointing to port 8080 Thank you very much Attention: This message, including any attachment(s), is intended only for the use of the individual(s) to which it is addressed and may contain information that is privileged or confidential. Any other distribution, copying or disclosure is strictly prohibited. If you are not the intended recipient or have received this message in error, please notify us immediately by reply e-mail and permanently delete this message including any attachment(s), without reading it or making a copy. Any outgoing message has been scanned for possible harmful file(s) or script(s), but it is your sole responsibility to run detection tools as we won't guarantee the safety of message(s).