That's what I meant ;) For me, the existing protocols are enough to work with while editing the "to/from" to get what I need in lockdown (though I've disabled lockdown due to SQL nonrobosity. (I just made that word up.) t On 5/20/06 11:54 AM, "Jim Harrison" <Jim@xxxxxxxxxxxx> spoketh to all: > Unfortunately, you can't "add" rules to the system policy. > You can only change the "to" or "from" aspects of them as allowed by > each policy group. > > In some cases; like the Authentication services, Active Directory rule, > you can change strict RPC enforcement, but not much else. > > -----Original Message----- > From: isapros-bounce@xxxxxxxxxxxxx [mailto:isapros-bounce@xxxxxxxxxxxxx] > On Behalf Of Thor (Hammer of God) > Sent: Saturday, May 20, 2006 11:52 AM > To: isapros@xxxxxxxxxxxxx > Subject: [isapros] Re: Customizing Lockdown Policy > > You mean like adding rules to the System Policy? > > > On 5/20/06 11:45 AM, "Thomas W Shinder" <tshinder@xxxxxxxxxxx> spoketh > to all: > > > > Hey guys, > > I know there is a default lockdown policy, but I was wondering > while watering the flowers this morning if there was a method to > customize the lockdown policy, other than using FWENGMON ? > > Thanks! > Tom > > Thomas W Shinder, M.D. > Site: www.isaserver.org <http://www.isaserver.org/> > <http://www.isaserver.org/> > Blog: http://blogs.isaserver.org/shinder/ > Book: http://tinyurl.com/3xqb7 <http://tinyurl.com/3xqb7> > <http://tinyurl.com/3xqb7> > MVP -- ISA Firewalls > > > > > > > > > All mail to and from this domain is GFI-scanned. > > > >