turki_00
asked on
ISA: Forbidden Access denied by access control list
Hi,
am using ISA 2000 with a dial up connection.
I can browse the internet from the srver terminal. however, the clients can't with msg in thier IE
Forbidden
You were denied access because:
Access denied by access control list
any help
am using ISA 2000 with a dial up connection.
I can browse the internet from the srver terminal. however, the clients can't with msg in thier IE
Forbidden
You were denied access because:
Access denied by access control list
any help
ASKER
yes i did,
just want to mention that am facing this problem only when i change to certian ISPs. but i have to !!
just want to mention that am facing this problem only when i change to certian ISPs. but i have to !!
OK....
Not quie sure where we go here then... Which ISP's are giving you issues?
Not quie sure where we go here then... Which ISP's are giving you issues?
ASKER
keith,
on of the loca ISPs, am calling it "EasyNet"
there is another one called "ImpTeam", however this one is not causing me any problems. i.e both clients and the server can surf the net.
the problem is the dial-up connection "EasyNet" is allowing the server to surf the net, and giving the clients the "Forbidden" page in the IE.
on of the loca ISPs, am calling it "EasyNet"
there is another one called "ImpTeam", however this one is not causing me any problems. i.e both clients and the server can surf the net.
the problem is the dial-up connection "EasyNet" is allowing the server to surf the net, and giving the clients the "Forbidden" page in the IE.
Turki, can you confirm that you are using NAT on your ISA server rather then just routing? There are still ISP's that will only accept traffic from a single address specifically to stop you using multiple machines. If Easynet is one of these then either you will have to discuss this with them (they may have a different phone number/contract you could use).
If you are already NATting, then there is nothing in ISA that I can think of that can be changed. As you can appreciate, if we make changes to ISA other than the NATting, we will mess up the one that is already working.
If you are already NATting, then there is nothing in ISA that I can think of that can be changed. As you can appreciate, if we make changes to ISA other than the NATting, we will mess up the one that is already working.
ASKER
keith,
thank you your response,
now what is NAT, and how can i configure it.
I don't know if the EasyNet ISP is blocking multiple machines or not. but can we give it a try on the NAT issue, I would like to learn.
My network lay-out is simple, 1 server with dial-up connection and ISA installed. And then, around 20 clients all connected in 1 LAN network.
thank you your response,
now what is NAT, and how can i configure it.
I don't know if the EasyNet ISP is blocking multiple machines or not. but can we give it a try on the NAT issue, I would like to learn.
My network lay-out is simple, 1 server with dial-up connection and ISA installed. And then, around 20 clients all connected in 1 LAN network.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I guess it is sort of ISP blocking thing,
anyway thank you for the information.
anyway thank you for the information.
Thanks :)
Have you created a rule allowing the internal network to go out to the internet for all users?