Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Firefox skiping firewall rules
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
Firefox skiping firewall rules - 3.Sep.2008 1:34:10 PM
|
|
|
mezcalito
Posts: 13
Joined: 28.Aug.2006
Status: offline
|
Hi:
I´m having the following problem , i have an isa server 2004 , and we have some deny rules to some sites, like youtube and some other tubes or porn sites, and it works fine with IE , but i installed recently firefox 3.0 to probe how it work and my surprise was that none of the sites that were bloked on IE , are blocked on Firefox i can navigate on all this sites.
Does anyone has similar issues , its important becouse as soon as more people find out about this , this could become an issue
Thanks in advance for any information
Luis Corona
Mexico
|
|
|
|
RE: Firefox skiping firewall rules - 3.Sep.2008 1:53:50 PM
|
|
|
Rotorblade
Posts: 976
Joined: 27.Feb.2007
Status: offline
|
Hi Luis,
What ISA clients are you using? i.e. Firewall, SecureNAT, Web Proxy
Can you post the details of one of your deny access rules?
RB
_____________________________
David Melvin
Ohio
MCSE: Security 2003, MCSA:Security 2003
|
|
|
|
|
RE: Firefox skiping firewall rules - 3.Sep.2008 7:04:16 PM
|
|
|
mezcalito
Posts: 13
Joined: 28.Aug.2006
Status: offline
|
Sure:
In almost all the computers we have a firewall client installed, versión 4.0 , so IE takes the configuration parameters from the client , but in the case of firefox there´s something weird , the browser has the no proxy option , and its able to navigate , i cheked the configuration on my pc , and its not configured as a secure NAt , it has a firewall client installed.
On the firewall i have one rule , that denys http, from internal client to a object called deny domain , where i put all the doamins we are preventing from accessing
Now i have this other question , how its posible that the firefox works, i guess as a nat client , when the pc its not configured that way
I hope this information help .
|
|
|
|
|
RE: Firefox skiping firewall rules - 4.Sep.2008 9:08:14 AM
|
|
|
Rotorblade
Posts: 976
Joined: 27.Feb.2007
Status: offline
|
Ok Luis, that helps some. Sounds like that your FW clients are bypassing the Web proxy. Check the HTTP protocol and make sure the Web proxy filter is enabled and bound the the HTTP protocol.
HTH
RB
_____________________________
David Melvin
Ohio
MCSE: Security 2003, MCSA:Security 2003
|
|
|
|
|
RE: Firefox skiping firewall rules - 4.Sep.2008 9:23:55 AM
|
|
|
Rotorblade
Posts: 976
Joined: 27.Feb.2007
Status: offline
|
quote:
Now i have this other question , how its posible that the firefox works, i guess as a nat client , when the pc its not configured that way
It's possible because you're using the ISA FW client which gives the PC client Winsock application access to the Internet through ISA using possibly any protocol. Using the FW and SecureNAT Client can be a big security concern if not properly controlled through the firewall policy and by defining the Firewall client application settings found under the General tab in the ISA MMC.
HTH
RB
_____________________________
David Melvin
Ohio
MCSE: Security 2003, MCSA:Security 2003
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
