We have a LAN with around 80 workstations. Some are laptops brought in from home. Home users may or may not have broadband.
We are using MS Server 2003 with Active Directory.
We have MS ISA Proxy Server on the gateway server with NTLM authentication.
We have other web servers on the LAN hosting multiple sites.
The domain name is BlueBottle (not really).
The websites are names like salesops.bluebottle, accounts.bluebottle, kpi.bluebottle, etc.
There are also dev.x and test.x variants of these sites (dev.salesops.bluebottle, test.salesops.bluebottle). Dev is for the development, test is for pre-release of new features and no specific prefix is the live version.
The sites do not all have their own IP address or web server. Sites share the web server.
We are NOT using IIS.
Workstations are configured to use the proxy server for all requests.
The "Bypass proxy server for local addresses" is set.
The "Exceptions - Do not use proxy server for addresses beginning with:" box is empty.
The IP address for all the sites is on the same subnet as the domain. All machines on the network have an IP address from 10.0.0.x
We have DNS records set for the sites to point to a specific address.
The sites are intranet sites only. They are NOT for external access (i.e. only locally tethered users are allowed access).
If a user goes to a site (say salesop.bluebottle), there is a significant delay. If I enter salesop.bluebottle in the "Do not use proxy server for addresses beginning with ...", then the site loads up a LOT faster.
I think the "Bypass proxy server for local addresses" doesn't do anything.
Also, the only way the web server scripts get the clients IP address is to have the site name in the list of exceptions ("Do not use proxy server for addresses beginning with ...").
So - the questions.
1 - What changes would you recommend?
2 - How would these changes be implemented globally? I do NOT want to have to visit every pc or have to set settings on new pcs as they arrive, and I want to stop the users from altering these settings once made.
3 - Am I missing out on something?
4 - Will these settings affect users who plug their notebooks into their home broadband (or even dialup) connection?
I am NOT a sysop, but everyone here thinks I'm the person who should fix this. Gee! Thanks!
This is a small issue with me putting a lot of words into it. Please be nice.
Thanks in advance,