Go to the table of contents Go to the previous page Go to the next page
Integrating Forcepoint URL Filtering with TMG > Configuring the ISAPI Filter plug-in to ignore specific traffic
Configuring the ISAPI Filter plug-in to ignore specific traffic
Deployment and Installation Center | Forcepoint URL Filtering
You can configure the ISAPI Filter plug-in to bypass both policy enforcement and logging for certain traffic, based on the user name, hostname, or URL. This may be used for a small group of websites or users, or for machines in a complex proxy-array or proxy-chaining configuration.
To prevent policy enforcement and logging of this traffic, add the user names, hostnames, and URLs that you do not want your web protection software to handle to the isa_ignore.txt file.
1.
On the TMG machine, open the isa_ignore.txt file in a text editor. This file is located in the Windows system32 directory.
 
Important 
The default isa_ignore.txt file installed during upgrade or installation contains the following URL:
Do not delete this URL. It is used by TMG in a CARP array for communication. This URL must be ignored by web protection software to allow policy enforcement and logging to work properly when multiple TMG instances are deployed in an array.
2.
*
User name: Enter the name of a user whose Internet requests should be ignored:
username=<user_name>
Examples:
username=jsmith
username=domain1/jsmith
*
Hostname: Enter a destination hostname for which user requests should be ignored:
hostname=<name>
Example:
hostname=yahoo.com
*
URL: Enter a URL for which user requests should be ignored:
url=<URL>
Example:
url=http://mail.yahoo.com/
url=mail.yahoo.com/
 
Note 
3.
Client computer configuration
Internet browsers on client computers should be configured to use TMG to handle HTTP, HTTPS, and FTP requests.
An exception to this configuration is browsers in an TMG environment using Firewall/Forefront TMG Clients or SecureNAT. These browsers must point to the same port, 8080, that TMG uses for each protocol.
See the browser online help for configuration instructions.
Firewall configuration
To prevent users from circumventing Forcepoint URL Filtering policy enforcement, configure your firewall or Internet router to allow outbound HTTP, HTTPS, and FTP requests only from TMG.
Contact your router or firewall vendor for information about configuring access lists on the router or firewall.
 
Important 

Go to the table of contents Go to the previous page Go to the next page
Integrating Forcepoint URL Filtering with TMG > Configuring the ISAPI Filter plug-in to ignore specific traffic
Copyright 2023 Forcepoint. All rights reserved.