What's the advantage to using or perhaps the disadvantage to not using web rewriting?
Problem: We have a web based application that just fails miserably using the rewriter. This app is used remotely by a large portion of my clients. So currently they all have to actually tunnel in versus just being able to use the web acl to let them access.
Would it be any better or different (without opening us up to the baddies) to create a policy to not rewrite that web URL?
If you havent already, try setting it up as a passthrough proxy. I had to do this to a couple of apps to keep them from getting mangled.