Registered users    
MembershipMembership:
Latest New UserLatest:jenisa villarin
New TodayNew Today:12
New YesterdayNew Yesterday:10
User CountOverall:23322
Private messaging    
You must be logged in to use this module.
Top 10 posters    
NamePosts
Mariette Knap12893
Marina Roos12507
Eriq Neale2114
Stan Guinn1913
Michael Patrick1912
Robert Pearman1771
Nick Pieters1425
Stewart Brown616
william warren598
Kevin D.579
Welcome unauthorized visitor    
If you want to join us in the discussions on this forum you need to register first. Registration is free! If you are already a registered user please login to join the forum.
Small Business Server Support Forum    
Forums > Microsoft Small Business Server 2003 & 2000 > ISA Server 2004
Subject: How to block all but certain URL's?
Prev Next
You are not authorized to post a reply.

Author Messages
Vance James User is Offline
United States
Member since
7/27/2007

Platinum Membership
Posts: 1
11/29/2007 12:07 AM  
I need to block all internet access except approved URL's. I have read and tried to use the info from the instructions written by Mariette Knap about denying certain URL's without success.

When I set the rule to allow, put in the approved URL's and make it the first rule in the list it prevents a workstation from connecting to the server. I get a limited eithernet connection warning. If I move it down the list of rules till the workstation can connect it does not block any URL's.

Anyone have any ideas?

Thanks Vance
robert pearman User is Offline
United Kingdom
Member since
2/23/2007

Platinum Membership
Posts: 1771
11/29/2007 10:54 AM  
it depends on what other rules you have set.

the idea is you have the most restrictive rules at the top, then gradually going down the list till you get the default deny all rule.

you would need to remove a lot of the default SBS rules to make this work.

an example:

request for http://www.bbc.co.uk

blocked by deny urls rule :go to next rule

sbs internet access rule - allow http traffic out >

so the request is granted.

what you need to do is create a url set of approved sites (sure you have done this already but much easier to go through step by step)

then create a new firewall rule - allow http(s) from internal to url set - for all users (or whoever) apply that and put it top of the list.

then you must remove ALL other rules that allow HTTP(s) from the list, or make them more restrictive - ie the users that they apply to - eg you might have the approved url rule first, for domain users
then a second rule allowing HTTP(s) to external for domain admins.

so the users would be restricted but the domain admins wouldnt.

you also need to make sure rules that 'allow all outbound protocols' are changed so that http is not permitted.
You are not authorized to post a reply.
Forums > Microsoft Small Business Server 2003 & 2000 > ISA Server 2004 > How to block all but certain URL's?


ActiveForums 3.7
Forum policy    
These Discussion Forums are dedicated to the discussion of the Small Business Server and related server and client software. For the benefit of the community please observe the following posting guidelines:
  1. No Advertising. This includes promotion of commercial products and non-commercial products which are not directly related to Small Business Server and related server and client software.
  2. No Flaming or Trolling.
  3. No Profanity, Racism, or Prejudice.
  4. Site Moderators have the final word on approving/removing a thread or post or comment.
Copyright 2002-2008 Concentrix b.v.    :   Page generated in 0.2812518 seconds.   :   Terms Of Use   :   Privacy Statement