I hope there are still people following this forum. I have followed the document specified on setting up HTTP filters based on signatures, and I seem to be able to get it to work with a couple of issues. I need some help.
Let me describe what I am trying to accomplish, and then I will move to what seems to be occurring. I am trying to simply setup a http filter that looks at the header and reads the User-Agent string to determine if a non-Microsoft IE browser is being used. If it is being used, I want the request denied completely, thus displaying a 502 error that I can customize. If the user is using an MS-based browser, they continue through the rulebase to check to see if they are in the appropriate group to be allowed through to a web app.
Here is what is happening. I can set the filters up so they look for User-Agent: and the string is Firefox, Safari, Chrome, or Gecko. These work, but instead of a 502 error, I get a 500 error, internal server error. It does state later in the error message that it is due to an HTTP filter. However, it is a generic 500 error, and I am not sure how to tell if this is generated client side or from ISA, or from the web server. I would like to customize the error to be user friendly and eventually do a redirect after a specific time period.
I have also tried Redline-Software's Advanced Web Routing tool that plugs into ISA 2006, but I cannot seem to get the chain to work on this either.
I am completely open to any suggestions, but at the end of the day, I would like to use ISA to receive the request, determine if the browser is IE, and then pass through to a rule set that either denies or accepts based on user group in AD.
Thanks, I appreciate the guidance on the customization. However, the error I am getting is a 500 (12217) and even if I customize both the 500 and the 12217 html files in the error_html folder, they don't appear on the client browser. I am starting to suspect that ISA is not throwing them, and it may be the destination webserver (which doesn't make sense since the http filtering is occuring on ISA). Why would I be getting 500 errors instead of a 502 Proxy error with the 1217 error code?