• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 231
  • Last Modified:

Add exemption to external site isa 2000

I want to add a exemption to a external site in isa 2000.

So far i have created a Destination set for the external address.
Then i have created a access policy calling that destination set and applying it to the relevant group
anything else i should do? as this does not seem to have worked.
1 Solution
Can you please more information?
Which protocols, where to? Do you get an error message
GRV001Author Commented:
to a external site, don't get errors but the site slows down and becomes unusable through the proxy. Avoiding the proxy runs smoothly

in event log on the proxy get this error pop up but it appears for many sites and they still work

"The ISA Server services cannot create a packet filter This event occurs when there is a conflict between the Local Address Table (LAT) configuration and the Windows 2000 routing table. Check the routing table and the LAT to find the source of the conflict."
Keith AlabasterEnterprise ArchitectCommented:
open the configuration tab and review the local address table. Make sure it ONLY contains addresses that are accessable by going out from the ISA server through  the INTERNAL nic. Anything that is accessible by going out of the ISA server through the external nic MUST NOT be listed here.

The fact it seems to work is incorrect, it will be causing delays and errors to your traffic and operations. Lets get this right, then we can look at your policies.
GRV001Author Commented:
We only have one nic on the isa server, the server may have originally been set up with two nics i not sure i only been here less then a month.

The reason for adding in the exemptions is that ISA 2000 does not liike Java from Sun

I just decided to add the exemptions into IE and then allow access to the external ip on the Firewall
PAQed with points refunded (300)

EE Admin
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Train for your Pen Testing Engineer Certification

Enroll today in this bundle of courses to gain experience in the logistics of pen testing, Linux fundamentals, vulnerability assessments, detecting live systems, and more! This series, valued at $3,000, is free for Premium members, Team Accounts, and Qualified Experts.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now