Access rules and content types

Microsoft Internet Security and Acceleration (ISA) Server 2006 takes the following actions to determine content type:

  1. ISA Server receives the Web server response and checks whether it includes the content-type header.
  2. If the content-type header is in the response, ISA Server compares the header value to the content type policy settings.
  3. If the response does not contain the content-type header, ISA Server compares the extension of the requested URL to the content type policy.
  4. If the URL does not contain an extension, ISA Server concludes that there is no match between the content type and the rule.


The content type is not always present in the URL or response header. For this reason, configuring an access rule using content types may result in unforeseen behavior of your firewall policy.

web link Get latest ISA Server content at ISA Server Guidance.
Send feedback about this page Send feedback about this page.