There are services available on an internal server but those services should not be "browsable" externally when going through the reverse proxy via Netscaler. At this time, the restricted folders for those services have been configured with a responder policy that will give a custom error page if detected. However, the policy is only set to detect the restricted folders when browsing directly to it and nothing beyond else the services would all be broken. So if someone knows the URLs beyond the restricted folders, they can be accessed externally.
Is there any way to make the content non-browsable but still allow the services to be accessible, and that, without touching the web server itself?