Re: No access with firewall client
- From: "A. Klimkin" <nothanks at microsoft.com>
- Date: Fri, 21 Jul 2006 10:28:38 +0400
This is the issue with ISA2000 HTTP Redirector Filter. It drops the
authenticated user credentials when it passes a web request from a firewall
client to the Web proxy service.
You should configure the filter to pass firewall clients requests directly
to remote web site. Thus you lost the caching and filtering features of the
Web proxy service, but at least you'll be able to connect.
Here are some details:
http://www.isaserver.org/tutorials/Preventing_SecureNAT_and_Firewall_Clients_from_Bypassing_the_Web_Proxy_Service_andHow_to_Give_Yourself_a_Headache_with_the_HT.html
And my personal suggestion - consider to upgrade to the ISA2004, or straight
away to the latest ISA2006. These ISA versions are real killers of ISA2000.
As much, I think, as ISA2000 became a killer of old buddy MS Proxy 2.0
Regards,
Andrew
"James" <fake@xxxxxxxxx> wrote in message
news:Or8jd4ErGHA.3776@xxxxxxxxxxxxxxxxxxxxxxx
Yes, I am confused...the settings look idendical to our old ISA
server...but something must be different somewhere....
"Phillip Windell" <@.> wrote in message
news:%235F6$BErGHA.5012@xxxxxxxxxxxxxxxxxxxxxxx
I'm not seeing anything wrong right now. I looks like it should work to
me.
I don't have any suggestions at the moment. I also don't have a ISA2000
around here to look at either.
--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com
"James" <fake@xxxxxxxxx> wrote in message
news:eMQ39lArGHA.4100@xxxxxxxxxxxxxxxxxxxxxxx
Ok, Under site and content Rules, I have an allow rule.
Action: Allow
Desinations: All
Applies to: Internet Browsers Group ( Have set it to any but doesn't
make a difference)
Http Content: All
Then I have a Protocol Rule, called Http Outbound
Action: Allow
Protocol is: Http, HttpS
Applies to Any Request
Schedule for both is set to always
Then I have an allow webiste rule
Destination is set to www.site.com
Action allow
Applies To: Any Request
HTTP Content is All
So when my application tries to access site.com if fails when the
firewall client is enabled, but is able to when it is disabled.
ISA 2000, running in Windows 2000 Environment
Client has proxy set, and firewall client installed.
So what am I doing wrong?
"Phillip Windell" <@.> wrote in message
news:ONkOTC5qGHA.3256@xxxxxxxxxxxxxxxxxxxxxxx
Give the exact "specs" of the rules.
--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com
"James" <fake@xxxxxxxxx> wrote in message
news:%23ahIiJ4qGHA.3380@xxxxxxxxxxxxxxxxxxxxxxx
I'm confused. I created an annoymous access rule to www.site.com
I've set to allow unathenticated access to http, and to an allow rule.
I've set this up on 2 isa servers.
One of them logs access to www.site.com as annoymous, the other as the
user that access it. Neither isa website has ask user for
identification checked off....any ideas on what I am doing wrong? I
need to allow unathenticated access to www.site.com so an application
can access it...
Thanks
"James" <fake@xxxxxxxxx> wrote in message
news:u92Dky3qGHA.2108@xxxxxxxxxxxxxxxxxxxxxxx
Ok, running iSA 2000
I have created an allow rule for all users, and an http rule for all
users. I have an app that connects to the internet, it works fine.
But if I enable the firewall client, it no longer works...
Any ideas?
.
- Follow-Ups:
- Re: No access with firewall client
- From: James
- Re: No access with firewall client
- From: James
- Re: No access with firewall client
- References:
- No access with firewall client
- From: James
- Re: No access with firewall client
- From: James
- Re: No access with firewall client
- From: James
- Re: No access with firewall client
- From: James
- No access with firewall client
- Prev by Date: Re: SBS 2003/ISA 2004 and Term Services...users must be admins on the TS?
- Next by Date: Re: Pocket Internet Explorer
- Previous by thread: Re: No access with firewall client
- Next by thread: Re: No access with firewall client
- Index(es):
Relevant Pages
|
