Ok, it is highly recommended that Packet Filtering is enabled, and he should make a filter for HTTP (port 80), HTTPS (port 443), POP (port 110), SMTP (port 25), etc.

To set/create filters, all you have to do is the following:

Open the Proxy Server Manager and double-click on WebProxy service
Click on the Security button under Shared Services
In the Security dialog, go to the Packet Filters tab
Check Enable packet filtering on external interface
Check Enable dynamic packet filtering of MS Proxy Svc packets
Click the Add button to configure a new filter.

There are several predefined filters, some of which are enabled by default, and will only allow inbound, others outbound requests. He can add filters here depending on which protocols should be allowed by users. Custom ones can be configured if the predefined ones don't cut it. I can e-mail you the filter configurations that I used when running Proxy 2.0 if you would like (since then I've upgraded to ISA 2000, but the filters are the same). Although most of mine only allow outbound access since I'm not hosting a site.

After all the desired filters are configured, I would recommend going to www.grc.com and running the ShieldsUp and Port scanner tests to see if the server is running "Stealth".

If you need additional info, let me know.

HTH

- Brian


>No, out network guy in the office isn't aware as to how to go about this.
>
>

>>Hi Glenn,
>>
>>Did you set up a IP Packet Filter to allow port 443?
>>
>>
>>- Brian