My company uses Oracle applications that is hosted outside the organization. Oracle requires a VPN connection to access the apps. The apps are browser based. The VPN connection exisits at our corporate office, we connect to them via a WAN on a Point to Point T-1. We also have our own inhouse T-1 for internet access so we do not use up bandwith on the WAN. We use ISA server as our Internet gateway.
Here is my problem,
In order for http requests to the Oracle application to work, we could not use the ISA client software, we had to switch to secure NAT.
Then we had to assign a route to the client computers via a logon script directing all Oracle requests through the P2P router. Everything else goes through the default gateway (ISA). This has worked fine but now I have an issue with Internet abuse. I need to enable content rules on the ISA server by "Users" or "Security Groups". My users are in a mixed environment of thin clients connecting to a Terminal Server and desktop computers. I do not want to restrict activity via the IP address of the client computer. This will cause problems with my Terminal clients. I have managers who use the terminal and need full internet access, but I have others who just need access to our Oracle applications. My delima is, I know I have to use the ISA client to gain this type of control. But I can not use Proxy because it will not route the oracle requests to the proper router on the lan. Is there a way to use the ISA client and tell ISA that all http requests to Oracle applicaitons get routed to the P2P router? I tried telling IE not to use the proxy for local intranet address and I put the addresses in the selection box but it still does not work.