February 14th, 2007, 10:51 AM
Internet connection existance with more than one proxy
At work,we have got ISA 2004 (FQDN: proxy.rami.ae,,,,,fake name ) which has two interfaces,
NICA 192.168.1.250 connected to core switch 4500
NICB for DMZ area ,,192.168.101.294
From DMZ through PIX to outside world.
I believe that all internal PCs (workstations) go to internet through ISA, the reason (Is it right conclusion ? ) I am saying that because we have to configure proxy within Internet Explorer -- > Internet Option à Connection à LAN setting
Some times when there is lack in the internet connection , I changed the LAN Setting to :
proxy1.telecomm.net.jp (fake one),,,,,,,,,port 8080
And some times If I chose the option :,,,,,,,,,,,,is this some thing related to a browser cache ?
“ Automatically detect settings “,,,,it worked as well
How can we troubleshoot (step-by-step) that ? (i.e how can we force in PCs use the right proxy ?)
February 14th, 2007, 02:44 PM
Is the ISA client installed on the workstations??
How people treat you is their karma- how you react is yours-Wayne Dyer
February 15th, 2007, 03:15 AM
A couple options off hand... At the pix you can block all http bound traffic that does not originate from the ISA server or ...
Use group policy to hard code the proxy settings in IE.
The pix is a better option and not as easily circumvented. Make sure you understand the repercussions of changes you make to the pix configuration.
I've never worked with ISA but it should be capable of blocking outgoing http traffic also, maybe setting configuring ISA to block http requests is a better option?
By gore in forum Newbie Security Questions
Last Post: December 29th, 2003, 07:01 AM
By NullDevice in forum The Security Tutorials Forum
Last Post: December 17th, 2003, 09:03 PM
By Ennis in forum The Security Tutorials Forum
Last Post: September 2nd, 2002, 08:20 PM
By kadeng in forum Firewall & Honeypot Discussions
Last Post: August 25th, 2002, 10:23 PM