Solved

ISA 2004 access policy - URL Blocking

Posted on 2006-07-06
4
206 Views
Last Modified: 2010-04-09
I want to block all internet sites except these three.  I do have some people who will need full access.

www.dor.mo.gov  
www.google.com
www.CarFax.com
0
Comment
Question by:redvipergts
  • 3
4 Comments
 
LVL 51

Expert Comment

by:Keith Alabaster
Comment Utility
Going to need a lot more info:

What network template have you used to set up the ISA?
Have you installed the ISA client, SecureNAT or just web proxy?
Is the ISA connected to the domain?
Are you wanting to block by user name or IP?
If you are blocking all internet access except for those three web sites, how is dns, smtp etc going out to the internet?
0
 
LVL 51

Expert Comment

by:Keith Alabaster
Comment Utility
Any update?
0
 
LVL 1

Author Comment

by:redvipergts
Comment Utility
Keith, the network template is edge firewall, I installed the firewall client, the plug-in that sits in the systray, the isa server is not connected to the domain so I guess we would he to block by IP ?

All I know is that the owner wants all employees to only go to three sites, but a few will still be wide open.

Any ideas ?
0
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 250 total points
Comment Utility
Yes, by IP is your only option then.

You will need to create computer objects with the ip addresses of the users you want to allow.
You will need to create a url set with the three web sites you want to allow.

You will need two rules in this order.
One will be the allow all rule with the from being the computer objects you have created.
One will be the allow rule with the url set including the three allowed sites for all users.
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Suggested Solutions

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now