I happen to be familiar with Unix firewalls but this Microsoft one is another - simply does not obey my rules. I need someone expert with it to help me out.<div>I have  a LAN in the 192.168.0.0 - 255.255.0.0 address range. ISA is running on SBS 23k. This PC has is multi-homed, with one public interface.</div>

<div><br></div><div>I need to do the following:</div><div><br></div><div>1. Allow pop3, pop3s, smtp, smtps, imap and imaps for everyone</div><div>2. Deny ALL Internet Access except to a few hosts. These exempted hosts have static IPs dished out via DHCP servers running either on the SBS or Cisco.</div>

<div><br></div><div>Now this is what I have attempted.</div><div><br></div><div>(a) Policy no. 1: Action = Deny; Protocols = All outbound traffic except selected (like above), From = Internal (with Exceptions), To = External</div>

<div>(b) Policy no. 2: Action = Allow; Protocols = Selected (FTP, HTTP, HTTPS) From = Internal; To = Selected Websites</div><div>....</div><div><br></div><div>Then I have the default Last Rule that DENYs everything.</div>

<div><br></div><div>What happens is that rule 1 stops the guys even from Accessing their e-mails and does NOT allow the PCs in the Exception list to access the Internet.</div><div><br></div><div>I am stumped.<br clear="all">

<br>-- <br>Best regards,<br>Odhiambo WASHINGTON,<br>Nairobi,KE<br>+254733744121/+254722743223<br>_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ <br>&quot;If you have nothing good to say about someone, just shut up!.&quot;<br>

               -- Lucky Dube<br>
</div>