Re: Help on HTTP Filter

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

---

• From: "C C" <someone@xxxxxxxxxxxxxxx>
• Date: Thu, 23 Feb 2006 11:26:10 -0600

---

Thanks. However, in my ISA 2004 Server Standard Edition,
I can only see the "Configure HTTP" on the rule if I check the
"Web Proxy Filter" on the Parameters tab of the HTTP properties.
AND when I do, all rules with the HTTP protocol has the
"Web Proxy Filter" checked, too! It is not rule specific! The
it behaves in my ISA 2004 server, it is all or nothing!



"Jens Baier" <jensbaier@xxxxxxxxxxxx> wrote in message
news:uY1UTTJOGHA.2036@xxxxxxxxxxxxxxxxxxxxxxx

Hi,

I want to configure HTTP in only one rule. I configure the
HTTP Filter for this rule to filter out sites with certain
signatures in them. So I check on the Web Proxy filter
in the HTTP properties. With the Web Proxy filter checked,
I can now configure the HTTP filter and add the signatures.

OK, the HTTP filter depends on the webproxy filter.

However, checking the Web Proxy filter also affects
the other rules which has the HTTP protocol, and so
affects the way these rule acts on the HTTP traffic.

The webproxy filter doesn' effect all rules with http. You men the HTTP
Filter but the HTTP Filter is also rule specific with the exception of the
"Header length. You can see the text that only this setting effects all
rules.

Is there a way to only confine the Web Proxy filter
to a rule?

the HTTP Filter is rule specific and the Webproy filter can be disabled
per rule. Both are different things.
When your rule blocks all traffic than you had created the rule wrong.
Read more about the HTTP Filter here:
http://www.microsoft.com/technet/prodtechnol/isa/2004/plan/httpfiltering.mspx
And about rule processing here:
http://www.isaserver.org/articles/ISA2004_AccessRules.html

regards Jens
www.nt-faq.de

.

---

• Follow-Ups:
  • Re: Help on HTTP Filter
    • From: Jens Baier

• References:
  • Help on HTTP Filter
    • From: C C
  • Re: Help on HTTP Filter
    • From: Jens Baier

• Prev by Date: Why do I get Proxy Requires Authorization!?
• Next by Date: Re: A little unsure about how to connect Internal to External
• Previous by thread: Re: Help on HTTP Filter
• Next by thread: Re: Help on HTTP Filter
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: suggestions on router w/firewall ... a simple packet filtering firewall should process HTTP ... > is received on port 21 by the same rules that would be used for FTP. ... A simple packet filter type of firewall cannot do that, ... (comp.security.firewalls) Re: accf_http and incqlen ... I setup the http accept filter with apache and I was having a hard time ... So why is it that it "appears" that the TCP connections never terminate, ... Last time I looked these were connections that got stuck in an early stage, that is, before the HTTP request had been received. ... The 'accf_http' filter which wants to parse said request waits forever in this situation because there is no timeout implemented, ... (freebsd-stable) Re: help with securenat clients ... > "enabled" on the Filter list while yet still setting it to not redirect ... > SecureNAT and Firewall Clients to the Web Proxy Service. ... But the ISA2000 HTTP redirector does no HTTP filtering. ... (microsoft.public.isa) Re: ISA2004 Beta - HTTP traffic to perimeter network translated ... Disabling cache doesn't disable the proxy. ... Same goes for HTTP filter - this ... (microsoft.public.isa) Help on HTTP Filter ... I have several rules which has the HTTP protocol in them. ... So I check on the Web Proxy filter ... I can now configure the HTTP filter and add the signatures. ... (microsoft.public.isaserver)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > ISA  > microsoft.public.isaserver  > 2006-02