Can ISA be configured to proxy certain web sites only
We are currently running ISA 2006, we are not using the web proxy, no workstations have any proxy server settings specified, but we have certain web sites now, on another network, which require a proxy server to be used.
My question is, is there anyway in ISA to create a rule that says, any web sites that match this rule, then use the following proxy server, otherwise go out to the internet.
I wan to aviod having to touch any settings on the client workstations if possible, ideally i don't want to have to configure the proxy settings in IE, or create any manual scripts to enable/disable the proxy or install the ISA firewall client. If anyone knows if this is possible to achieve this through ISA, great, if not i'm open to other suggestions
My question is, is there anyway in ISA to create a rule that says, any web sites that match this rule, then use the following proxy server, otherwise go out to the internet.
I wan to aviod having to touch any settings on the client workstations if possible, ideally i don't want to have to configure the proxy settings in IE, or create any manual scripts to enable/disable the proxy or install the ISA firewall client. If anyone knows if this is possible to achieve this through ISA, great, if not i'm open to other suggestions
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
what we are trying to achieve is to be able to proxy for certain web sites and not others. At the moment we don't use a proxy server anywhere in our environment, but we now require access to web sites that require the use of a proxy server, and are trying to come up with a solution that will enable us to use a proxy server for specific sites and allow us to set the proxy details, but allow all other web sites through avoiding the proxy all togetther.
Ideally we didn't want to have to touch any settings on the client machines either with/without GPOs if we don't have to
We don't want to deny access to any sites, merely redirect certain sites to use a web proxy.
If we went down the route of using WPAD, can it be tied to a certain domain or would the settings be globabl to to speak
From what you guys are saying, it's as we suspected, that there is no easy way to configure this through ISA and would therfore require the use of a proxy server configured through IE, whether it be via a GPO or WPad/pac files
Ideally we didn't want to have to touch any settings on the client machines either with/without GPOs if we don't have to
We don't want to deny access to any sites, merely redirect certain sites to use a web proxy.
If we went down the route of using WPAD, can it be tied to a certain domain or would the settings be globabl to to speak
From what you guys are saying, it's as we suspected, that there is no easy way to configure this through ISA and would therfore require the use of a proxy server configured through IE, whether it be via a GPO or WPad/pac files
ASKER
Thank you for your help guys, we have decided to go down the route of creating a PAC file to specify which sites require a proxy server, and all others go DIRECT. We then pushed this setting out via GPO and it's working like a dream.
More than welcome.
if i understand correctly its possible, lets say you have
One Office
Two Network, 192.168.168x (A), 192.168.x.x (B).
you have One ISA server with 2 or more NICs. now you want to disable Site www.abc.com for A, you can create one role that source A, Destination (Website), Action Deny, priority (as per network), enable.