We've implemented a locked down internet for our client. They want most users to only be able to access a certain whitelist of urls.

So we've created the rule in ISA, and it's working well. Except when they try to access Mapquest or Google Maps. They can browse those websites, and enter the addresses and directions they want, and that part of the site works. But the map images won't load.

 

Everything on the page loads except the images.

 

What am I missing? The URLs for the map searches don't show it using any other domain, but apparently it is pulling those map images from another domain, or IP address. Any help?

Thanks!

Chester

ok, we're having some success! By using the Monitoring tool, I was able to see what URLs were being blocked, and add those to the "whitelist".

 

However, because the rule is using specific Windows Users, whenever a request goes to an allowed URL from "anonymous", that request is blocked. So some controls, images, and things like that are still being blocked.

 

Here is an example of the block from the Monitoring console:

The ISA Server requires authorization to fulfill the request. Access to the Web Proxy service is denied.  0x0 0x800 Web Proxy Filter 10/2/2008 12:38:10 PM 192.168.16.2 8080 http Denied Connection SBS Restricted Internet Access 192.168.16.106 anonymous Internal External GET http://audible.edgeboss.net/download/audible/content/bk/sadl/000023/bk_sadl_000023_sample.mp3

 

So, how should I make this work? Should I allow access for Anonymous through a different rule. (like the default rule, or the Protected Networks rule), or is there a better way?

Chester