ISA 2006 Website Block List
Posted on : 14-07-2009 | By : Vishal Vasu | In : ISA Server
Tags: ISA server
13
One of the features in ISA Server 2006 is the ability to block traffic based on URL or Domain name. This means that traffic can be blocked for a particular website from ISA Server without disrupting the general Internet access rule.
I’ve compiled some Domain Name Sets and URL Sets from the Internet and zipped them for easy availability for ISA administrators. Download the ZIP file and extract it. Under Network Objects in the Toolbox tab, right click URL Sets and click Import. Choose a single XML file from the unzipped folder of URLs. Once you have imported all XMLs, follow the same procedure for Domain Name Sets.
The next step is to create a rule which denies traffic to the websites which are listed in the XML files that we imported. Start by creating a new rule. I’ve named my rule as “Block Custom Sites”.
In the Access Rule, choose “Deny”.
Under protocols, choose HTTP and HTTPS.
Under Sources, choose Internal and VPN Clients.
Under Destinations, choose the XML lists that we imported. You can add multiple XML files.
Remember to shift the rule that we created to the top of all rules and we are done.
Loading ...
dear sir , could you please let m eknow how to block the gmail chatting using isa server 2006.
please help me on this
Hi,
You will need to block this using “Signature”. Here is a link that would help you to get started with the signatures: http://technet.microsoft.com/en-us/library/cc302520.aspx. This is written for ISA 2004 but applies to ISA 2006 as well.
And how to allow specific users or computers access the blocked sites ?
Hi Daniel,
You can add computers or IP range and then put that in the exception list of the Blocked Sites rule.
I have successfully configured isa server 2006 and created allow rules for all users and deny rules for some of the users.
I have installed isa server on separate server 2003 which is not configured DNS and ADS.My problem is now can access the domain server but i cannot access the client systems from isa installed syatem.I can access the share folders from domain server but can not access the shared folders from clients systems.
I have created rule for DNS also. Allow – DNS HTTP HTTPS POB3 – all network set – external – all users But still i am facing the same problem.
Pls advice ASAP.
Thanks in advance.
Hi,
Can you check the system policy and see if traffic or access from Local Host is allowed to internal network?
Hi,
I have installed isa server 2006 and i followed above u mentioned and configured but still the users can able to access the websites.pls advice and sorry im very new for ISA servers
Thanks
Hi,
Have you moved the rule to the top of the list? Deny rule for websites should be the first rule in your ISA firewall rules list.
Hi thank you very much for your reply.I have finished partially because of your reply.But how to block gmail
they can login with igoogle.com or google.com itself.I wont block google but i want to block gmail and orkut.And pls advice how to block proxy websites also.
Thanks in advance,
Suthakar
Can you please tell me what is the tool you are used for creating bulk blocking websites?
Most of the site list has been taken out from the Internet. There are many URL’s and Site lists which are published on the public domain. The ZIP file that I have mentioned in my post is a compilation of all these plus the ones that I had been adding up. The XML have been exported from ISA 2006.
Hi Rajkumar,
You can download the website list from the following URL: http://www.vishalvasu.com/uploaded_images/ISA-Block-List.zip
This is a list that I have compiled. Make sure the block rule remains at the top in your ISA rule set.
Can you please help me in knowing the Bulk website list to add in CUstom url set