I'm setting up domain sets to block access to certain sites and have one problem. According to some of the articles I have see on this web site as well as others if I want to block access to an entire domain I should list it with the *.
For exanmple to block any access to 1-800onlinecasino.com I should enter the domain as *.1-800onlinecasino.com
Thanks for post ing this. I went back and cleaned up my access lists. I have had similar issues in the past.
One question.... Doesn't this leave an opening for a malware writer to use ihatemicrosoft.com or something like that to circumvent the web filtering on ISA? *.microsoft.com at least guarantees that it will cover only the Microsoft domain. I guess you would be forced to put *.domain.com and domain.com for every domain if you wanted to be really careful.
From: Lebanese in Kuwait
Doesn't this leave an opening for a malware writer to use ihatemicrosoft.com or something like that to circumvent the web filtering on ISA?
Yes , this somtimes occur. i do in my block rules, an exception list, and i include it in the sites that were blocked because their domain name is part of other illegal website. ex. *microsoft.com get blocked becuz ihatemicrosoft.com.
So create a domain name set, name it Trusted_sites for example, and include in it the sites that got blocked.