Firewall Client Bypass Access Internet - ISA Server with WebSense

Firewall Client Bypass Access Internet - ISA Server with WebSense (Full Version)

All Forums >> [ISA Server 2004 Firewall] >> General

Message

lucianolima -> Firewall Client Bypass Access Internet - ISA Server with WebSense (14.May2008 7:00:48 AM)
Good morning, In my environment I have an ISA Server 2004 Enterprise Edition server ISA01 and WebSense in Websense01 server, which is the control of the Internet to users. All customers are configured as a Web proxy and some are set up as Firewall Client. I'm having problems with customers configured with the Firewall Client, which are making undue access the Internet. The users doing a bypass to access the Internet disabling the Web Proxy and exit through the Internet Client Firewall, which does not guide the requests for WebSense. In this environment I can not apply GPO to block the user make this change because the vast majority use laptop. What can I do in the ISA Server or Client Firewall for solving this problem?

A.Miller -> RE: Firewall Client Bypass Access Internet - ISA Server with WebSense (14.May2008 3:38:27 PM)
Hello, Which version of Websense are you using? I had that problem before upgrading from Websense Enterprise 6.1 to 6.3 in 2006. After that upgrade, we had a different issue related to users browsing with the Firewall clients in which the users with Firewall clients were being correctly filtered, but filtered sites were not displaying a blocked page, and all browser traffic from these users was being shown in Websense reported as being from an incorrect user. Anyway, the problems were solved by following the Websense KB article 2441: Configuring for ISA Server 2004 Using Non-Web Proxy Clients Hope this helps. -Andrew

lucianolima -> RE: Firewall Client Bypass Access Internet - ISA Server with WebSense (23.May2008 1:33:45 PM)
Hello Mr. Miller, I created only text file called ignore.txt into its I put the name of the ISA Server and problem was resolve. The option Enable Web browser automatic configuration is not necessary. Thank you very much.

Page: [1]