You may have noticed that in certain cases, the Client Username field in the ISA firewall log has user names with question marks - (?) - after them:
Who are these questionable users?
These user names appear when you have a policy rule which allows All Users, and a Firewall Client (FWC) computer passes through that rule. Since the ISA policy doesn't require authentication, ISA doesn't perform authentication with the client. But During FWC channel establishment, the client computer sends the user name to the ISA computer. ISA knows what name the user claims to have, but ISA never verified it. To convey this situation, the user is displayed with a question mark.
So should you rely on these user names?
P.S. Real, authenticated user names appear with a domain prefix: DOMAIN\username.
-Jonathan BarnerISA Server Sustained Engineering Team
10x Jonathan for description :)
Security Microsoft and Novell Open Interoperability Lab http://www.microsoft.com/presspass/press/2007/sep07/09-11MSNovellLabsPR.mspx
News BizTalk Server BizTalk Server Roadmap (updated) http://www.microsoft.com/biztalk/evaluation/roadmap/default.mspx
hai i am using isa sever 2006 i want to block websites help me to block websites.