Re: One for Steve Foster
- From: "Gary D" <gary@xxxxxxxxxxxxxxxx>
- Date: Fri, 29 Apr 2021 16:51:30 +0100
Steve, sorted it. Looks like a corrupt "test user". Used a different live
user, all worked OK. Thanks again
"Steve Foster [SBS MVP]" <steve.foster@xxxxxxxxxxxxx> wrote in message
> Gary D wrote:
>> Hi Steve. You replied to my earlier post about restricting web sites
>> destination sets and s/c rules in ISA.
>> I had a default set of SBS2003 rules. I am able to ALLOW a user access
>> all websites except for hotmail.com (for example). BUT I am unable to
>> the user access to all websites except for hotmail.com
>> When the 2nd scenario is in place all websites seemed to be barred, as
>> though the specific allow (for hotmail.com) is being ignored.
> As I undoubtedly explained, Deny always beats Allow.
> So, any Rule that Denies All effectively kills all access (this is handy
> to know if you've got a trojan/spyware/whatever spewing crud to the net).
> You need two Rules:
> * one to Allow access to specific sites (or a blanket Allow All)
> * one to Deny access to "All except Selected Destinations" using the
> allowed sites set
> Steve Foster [SBS MVP]
> MVPs do not work for Microsoft. Please reply only to the newsgroups.
- Prev by Date: Re: One for Steve Foster
- Next by Date: SBS2003 Premium and Symantec NAV corp
- Previous by thread: Re: One for Steve Foster
- Next by thread: SBS2003 Premium and Symantec NAV corp