Link to home
Start Free TrialLog in
Avatar of marky1984
marky1984

asked on

ISA2006 - creating a URL set to use as a whitelist

Hi

I have been using my ISA2006 box successfully for a little while now. How I would like to now create a "white-list" to stop users getting onto any site not mentioned in the list.

I have this working in test environment, however I have issues adding sites to the white-list and making them work correctly. For example i know to add yahoo i would include in the URL-set *.yahoo.co.uk/*

However a site i need to add is https://aftersales.i.daimler.com/

So in my thinking i have added *.daimler.com/* and even *.i.daimler.com/*

Yet it still won't work, and i'm struggling for ideas

Thanks

Mark

Avatar of Chris Geraghty
Chris Geraghty

ISA cannot see the URLs in an SSL session,
You cannot use a URL set - you'd be better with a domain set
Avatar of marky1984

ASKER

Thanks for the reply, how would i add the mentioned URL above in there then?
ASKER CERTIFIED SOLUTION
Avatar of Chris Geraghty
Chris Geraghty

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Excellent, I will have a dig at all this later and let you know how i get on

Thanks!
Well that made my life a lot simpler, THANKS!

I have another slight issue in that the daimler site use an embedded java app. This won't go though my ISA at all, it asks for authentication and no matter what i put in it won't work. I have tried creating a rule for the specific site to allow all users through but still no joy. I can get it to work going via other proxies not managed by myself but this isn't ideal

My ISA log for the query is attached
isalog.xls
On your "allow" rule, are you allowing all content types or just http?
It allows all types
Different question Mark - this one is done.
no worries, thanks for the help!

Will ask another question shortly.