Re: please help with very simple (I hope) question

Well live monitoring saved me. Thank you. I got my rules configured,
this time without allowing everything under the sun. The only reason I
had all networks to all networks was because I wanted to see if I could
get out at all.

Btw, for those who have no idea what they are doing like me, what
seemed to fix the server's internet access was a Enterprise Policy Rule
that allowed Localhost to Anywhere. I kept trying to add the rule to
my Firewall Policy to no avail. I don't know if that is supposed to
work or not, but once I added it to the Enterprise Policy it worked
like a charm.

Now I have another question. I have allowed all traffic from the
monitored computers to the ISA server, and nowhere else. I tested this
rule and it is working. I added the proxy server to one of the
computers I was using to test (this server isn't live yet) and I can
see it in the real-time monitor that it is allowing the HTTP connection
(proxy server uses port 80) but my browser immediately kicks over to:

Error Code: 403 Forbidden. The ISA Server denied the specified Uniform
Resource Locator (URL). (12202)

On my browser, I never get the Proxy Login screen and I can see in the
real-time monitor that the request was denied. There is no rule that
shows why I am being denied - In fact, the line right before that
specifically shows that I am opening up Port 80 for the computer to
connect to. The only reason I can guess as to why I am being denied is
that I show up at anonymous. But I can't change that because I never
get a screen that asks for my username and password on the client
computer. I have tried radius authentication (ISA doesn't even try to
hit our radius server), Basic and Integrated authentication but none of
these give me the prompt on the client.

.

Relevant Pages

  • Re: What is going on with Micros**t?
    ... > infected computers are the truly clueless. ... > infection as soon as you can; each email you're getting is also going ... I tell them their mail server is bombing me 5-6 times an hour, ... happens on their networks. ...
    (alt.computer.security)
  • Archiving Mail as files
    ... which is isolated from other networks. ... has a number of computers that are regularly automatically send mail ... email server that receives mail and archive them as files. ... The archived files are moved regularly to another computer. ...
    (comp.mail.sendmail)
  • Re: What needs to talk to my systems?
    ... I'd definitely monitor for ... Is there a way to run something on a server that continuously monitors ... which computers talk to it and compile a list of those computers over ... I'd like to lock down a list of computers, ...
    (microsoft.public.windows.server.security)
  • Re: Problem Pinging
    ... >> One of the smaller networks that I maintain has a strange problem. ... All of the PCs can access the first server. ... The computers that can connect to both servers can ping every other ...
    (microsoft.public.win2000.networking)
  • Re: Problem Pinging
    ... > One of the smaller networks that I maintain has a strange problem. ... All of the PCs can access the first server. ... The computers that can connect to both servers can ping every other ...
    (microsoft.public.win2000.networking)