Configure Firewall Policy in Microsoft (Internal Security and Acceleration Server) ISA 2006

Microsoft ISA 2006 is the old release for the current product of Microsoft TMG or known as Forefront Threat Management Gateway. Although this product have been discontinued and has been replaced by Microsoft TMG 2010 (also has been discontinued, but the support still available until 2015) there might be some of the users that still using this server. For the sake for those people as well as for our general information, below are the basic steps to deny access into particular website. In this article we are using Youtube as example.

Step 1: Open ISA server management. A menu like below should be shown.

 

Step 2: Click on the Arrays > YourServerHostname > Firewall Policy. A list of rule will be shown here. You can verify what policy rule that has been created.

 

Step 3: Right click on the Firewall Policy menu on your left. Choose New > Access Rule to start creating new rule in our firewall policy arrays.

 

Step 4: A pop up box wizards will be shown. Give any name to the access rule name that we want to create.

 

  

Step 5: Select which rule action to continue. Click Next to continue.

Step 6: Select which protocol that rule will apply to. You can choose between All Outbound Traffic, Selected Protocol (which you define your own set of protocol) and All Outbound except Selected. For this guide we choose All Outbound traffic. Click Next to continue.

Step 7: Select Access Rule Sources. You need to add manually from the list of entities given. If the sources are not in the list, you can create new entities in the box given. We choose internal and local host connections. Click Next to continue.

Step 8: Select Access Rule Destinations. Add the destination address base on your requirement. Choose from several lists of entities given. If there are not given, you can create new list. Create youtube connections and click next to continue.

Step 9: Selects user sets from the list for the rule to apply to. Choose the list from box given. If not, you can create new user. For now, we choose All Users and click next to continue.

Step 10: After that a confirmation box will show. Click Finish to proceed.

Step 11: Before any changes can take any effect, you need to click Apply at the top of the page.

Step 12: Write down the description on the box given. It is useful for your future references. Click Apply to finish.

And that’s it. Your new rule should be up and ready!

**Please make sure that before these policy can take changes, you must enable proxy settings to automatically use the ISA server configuration in each your clients PC’s internet browser.