• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

using any protocol

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 General ] >> General >> using any protocol Page: [1]
Login
Message << Older Topic   Newer Topic >>
using any protocol - 17.Oct.2006 7:01:10 AM   
nnmmss

 

Posts: 96
Joined: 30.Nov.2004
Status: offline
one of users in LAN which can work with internet 24 hours a day has limitation of protocol usage, i mean he can use HTTP and HTTPS only. but i have seen that he is using hotmail messenger, yahoo messenger and icq also. i have tried to killed its session from ISA server and without any hesitate his record would be shown on the monitor, i think may be he is installing a program which is connected to internet an can make him to use any protocol, can i understand it by log files?
and one more thinng. how can i cause not let this user connect to icq sites and a few IP address?
Post #: 1
RE: using any protocol - 17.Oct.2006 7:22:31 AM   
jzietsma

 

Posts: 14
Joined: 5.Oct.2006
Status: offline
create an access rule to add those sites or protocols so they are blocked.  Those rules will take precedent over the allow rules when newly created (you can also move rules around so they are in the order you wish)

(in reply to nnmmss)
Post #: 2
RE: using any protocol - 17.Oct.2006 7:35:25 AM   
elmajdal

 

Posts: 6022
Joined: 16.Sep.2004
From: Lebanese in Kuwait
Status: offline
quote:

i mean he can use HTTP and HTTPS only. but i have seen that he is using hotmail messenger, yahoo messenger and icq also

this exactly how the new versions of IM work, they only need http and https to connect.

the best way to block these apps, is by using signature.
http://www.isaserver.org/articles/2004blockp2pim.html




_____________________________

Tarek Majdalani

Windows Expert - IT Pro MVP
Facebook : https://www.facebook.com/ElMajdal.Net

(in reply to nnmmss)
Post #: 3
RE: using any protocol - 18.Oct.2006 2:52:54 AM   
nnmmss

 

Posts: 96
Joined: 30.Nov.2004
Status: offline
well acutally i did whatever i read in the article but again i could use messenger. but i should add i am use VPN from LAN to Isa to use internet, does it make any difference?
i add the following in the signature of the rule that i am using
1- Request Headers    *-User-Agent:     *-MSN Messenger
2- Request Headers    *-Host                *-msg.yahoo.com

but after applying i am can use the messengers.

one one thing now i test it without LAN , i mean like normal User in LAN, the messneger weren't blocked.
in this case which i was in LAN and no VPN was used for accessing internet, my pc has these app and setting:
1- Firewal client application
2- SecureNAT

but again no success

< Message edited by nnmmss -- 18.Oct.2006 3:18:26 AM >

(in reply to elmajdal)
Post #: 4
RE: using any protocol - 18.Oct.2006 5:55:47 AM   
elmajdal

 

Posts: 6022
Joined: 16.Sep.2004
From: Lebanese in Kuwait
Status: offline
check the signatures i posted in this link : http://forums.isaserver.org/HTTP_Signatures_-_NO_QUESTIONS_-_JUST_SIGNATURES_PLEASE/m_2002015478/tm.htm



_____________________________

Tarek Majdalani

Windows Expert - IT Pro MVP
Facebook : https://www.facebook.com/ElMajdal.Net

(in reply to nnmmss)
Post #: 5

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 General ] >> General >> using any protocol Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts