Dear Members
I was using ISA for many years for publishing my website. what may the alternative application of ISA. is any similar software like ISA
Regards
Rabbani
RaSa
↧
TMG ISA is End of Life
↧
User Acivity report blank for roll up 5 TMG 2010 SP 2
Dear Team
Now I have a problem with user activity report with black report. Previously I can access but after upgrade to roll up 5 I find this issue.
already googling and find this path:
but no luck.
it there any suggestion for me to to resolve this issue.
thank you
Fajar
↧
↧
TMG Control service does not start
Hi
I have a problem on a TMG 2010 Standard install. We have been using it for some time, but recently the TMG Control service does not start, it stays on "Starting", resulting in none of the other TMG services starting. Sometimes if left long enough it will start after a few hours.
I have installed all Windows updates as well as TMG SP2 Rollup 6.
Any advice or assistance would be highly appreciated.
↧
NAT Site-to-site IPSec VPN
Hello, I have the following scenario
LOCAL (10.10.10/24) - TMG - PUBLIC IP A > PUBLIC IP B - CISCO (20.20.20/24)
On B Side, the ask us to present ourselfves with IP Range 30.30.30/24.
How can this be achieved with TMG Latest SP ?
↧
How to read blob data from vendorparametersets?
Hi,
I am working on some scripting with TMG and have run into some issues modifying the configuration via the COM interface.
For example - if you have a web publishing rule set up with customised selections under Traffic > Filtering > Configure HTTP, this will create an entry under the rule's vendor parameter sets. To view it you can use this script in an elevated Powershell:
$fpcroot = New-Object -ComObject fpc.root
$tmgarray = $fpcroot.GetContainingArray()
$global:PolicyRules = $tmgarray.ArrayPolicy.PolicyRules
$rule = $PolicyRules.Item("YOUR-RULE-NAME")
$rule.VendorParametersSetsYou can see the entry in question is {f1076e51-bbaf-48ba-a2d7-b0875211e80d}. If you select that entry (eg.
$rule.VendorParametersSets.Item('{f1076e51-bbaf-48ba-a2d7-b0875211e80d}')
Name AllNames
---- --------
{f1076e51-bbaf-48ba-a2d7-b0875211e80d} {XML_POLICY}), you still can't view the actual data under the {XML_POLICY} value.
Is it possible to retrieve the data in PowerShell? I can write to it easily, so it should be readable...
Thanks
↧
↧
Microsoft Forefront Engine update failed
Hi All,
I'm trying to update Microsoft engines on Windows 82RK server and its not happening through mgmt console, when i trying to update manually, i'm not able to run script since it says "Proxy Authentication Failed" and i'm not able to access the proxy server through the IE/Chrome.
And the URL i got to update engines is not pinging, Can anyone help me out with this.
↧
License Expired of Web Protection
Dear Microsoft Team,
Microsoft Forefront Threat Management Gateway 2010 is causing problem.while using URL filtering it shows
"Web Protection License has expired.Verify that you have a valid license".
Please chaperon me and lead us to resolve this issue.Attached is a substantial error pop up when using Query for URL Category.Please help me if there is a need of license and how to order it.I can provide any detail on your request.
↧
No Dropbox, No Sending Windows Live Mail - ISA to blame?
Hi,
Running Windows SBS 2003 and ISA 2004. I'm on a Windows 7 machine.
I'm unable to send mail using Windows Live Mail (can receive just fine):
"The connection to the server has failed.
Subject 'Blah Blah'
Server: 'smtp.blahblah.co.za'
Windows Live Mail Error ID: 0x800CCC0E
Protocol: SMTP
Port: 587
Secure(SSL): No
Socket Error: 10060"
And I'm unable to use Dropbox (it doesn't connect to update at all).
I'm sure this is something to do with the ISA server's proxy settings. If I use a different internet connection on the workstation (disconnected from the server) all of the above works. But when going through the server, it fails. I tried adding the proxy settings in Dropbox, but no go.
I'm a noob with ISA, so any instructions, please make it step by step. : )
Thanks!
↧
Autodiscover Office365 - TMG - The Connection was refused
Hello,
our company is using Office365 Exchange.
When I want to add an account to the Outlook desktop client, which is behind TMG firewall, it takes about 30 minutes when Outlook prompts for password again. Once I enter, account is provisioned.
When I do the same on the same PC, without TMG, it asks me for these credentials within 10 seconds.
I have All Outbound enabled - so no traffic is blocked from internal to external network.
I see an error on TMG - "The Connection was refused"
TMG is in factory defaults - tried on 2 instances.
DNS and other stuff is set correctly - validated several times on O365 portal. All DNS entries are available for PC behind the TMG.
There was exactly same problem with no resolution:
https://community.office365.com/en-us/f/156/t/225752
Can you please advise?
Thanks
↧
↧
Using TMG(ISA) Server in Data Center as firewall
Hello,
Im working for a Data Center in Turkey. We have problems with layer7 DDoS attacks as most Data Centers has.
I wanna use TMG as firewall to block that attacks but im not sure that it will usefull or not.
I wanna know whats your idea in that, how do i configure it. And if you think it will usefull how i should locate it.
↧
Status: 12204 The specified Secure Sockets Layer (SSL) port is not allowed. Forefront TMG is not configured to allow SSL requests from this port. Most Web browsers use port 443 for SSL requests.
TMG Server is outgoing https non standard port 3222 I have access rule to allow computer to external for all users on port 3222 I get below error on TMG capturing logs I have also added external IP into proxy by pass list. It is just not working Someone resolved this issues in the past. | |
|---|---|
| <id id="L_LogPane_LogType">Log type:</id><id id="L_LogPane_WebProxyForward">Web Proxy (Forward)</id> | |
| <id id="L_LogPane_Status">Status: </id>12204 The specified Secure Sockets Layer (SSL) port is not allowed. Forefront TMG is not configured to allow SSL requests from this port. Most Web browsers use port 443 for SSL requests. | |
| <id id="L_LogPane_Source">Source:</id>Internal (xx.xx.xx.xx:61244) | |
| <id id="L_LogPane_Destination">Destination:</id>xx.xx.xx.xx:3222 | |
| <id id="L_LogPane_Request">Request: </id>xx.xx.xx.xx:3222 | |
| <id id="L_LogPane_FilterInfo">Filter information:</id>Req ID: 14180cad; Compression: client=No, server=No, compress rate=0% decompress rate=0% | |
| <id id="L_LogPane_Protocol">Protocol:</id>SSL-tunnel | |
| <id id="L_LogPane_User">User: </id>anonymous | |
| |
Additional informationMuhammad Mehdi
↧
TMG 2010 Internal Array Connection
Hi All,
My client environment have 2 TMG 2010 SP2 server Array.
Call it with A & B. A is Primary TMG server.
The condition is server A can ping server B with production network & internal array network.
But server B cannot ping server A either with production network or internal array network.
All TMG services is running on both server.
TMG functionality is OK on both server. Both server can open TMG console.
If we create rule, rule will replicated to other server.
My question is,
Server B totally cannot communication with server A (based on ping test), but why TMG server work properly on both side?
Can anyone explain me what make this happen?
Thanks for your help :)
Best Regards,
Henry Stefanus
↧
ISA 2006 authentication problem
Dear,
I am setting up ISA 2006 as a web proxy server.
I am using the Single Network Adapter template and I am using Active Directory Integrated authentication.
when i using domain username login to a computer, they can access the internet. but there are about one or two times (about 5 minitues ) interupt everyday. how can i fix this problem? Thanks very much.
and it pop up a window let me to input username and password, but i input the correct username and password, it still pop up a window. while i cancle the window ,it show the follow issue:
407 Proxy Authentication Required。The ISA Server requires authorization to fulfill the request. Access to the Web Proxy filter is denied. (12209)
↧
↧
TMG 2010 and Skype4B
Hi
i create a published rule for Skype4B for meet, dialin and webext and lyncdiscover in TMG 2010
but when i try to test the rule i receive the following error
"Category: Destination server certificate error
Error details: 0x80090322 - The target principal name is incorrect."
i already checked the certificate issued by our private CA and all the above name included in the certificate
↧
how to connect outlook through TMG
how to connect outlook through tmg ?
do i need to add role in tmg ?
waiting for response
↧
Allowing Dropbox in TMG
Does anyone know how to allow desktop dropbox application on TMG.
↧
Dropbox Desktop application not running in domain via TMG 7.0
i am unable to use dropbox on WORKGROUP computer in a domain network.
we using MS Forefront TMG 7.0.9.193.500 and tmg client on domain computers. so dropbox working fine on tmg client PCs, but not connecting on workgroup PCs , i tried with no proxy, auto detect and manual proxy for dropbox but didn't worked .
i also create a rule on TMG which allowed all domains, URLs of dropbox.com .. but nothing working for me.
advance thanks for precious suggestions.
↧
↧
TMG 2010 policies not work
Good day,
I am using TMG 2010. I create the following allow firewall policies,
1- All outbound traffic from internal to mails only to Designing department
2- All outbound traffic from internal to Specific websites to HR users
3- All outbound traffic from internal to external to engineering, Finance etc.
When I try to connect to the internet using client computer and find there is no internet access. When I disable policy no 1 and 2 and allow No 3rd policy to all users, the internet work fine. Can you please help to solve the issue and please tell me how I allow dropbox behind TMG 2010?
Regards,
Imtiaz Latif
↧
ISA 2006 - Face Book access issue
HI
we have ISA 2006 2 node NLB and Web sense integrated. issue is all other sites are working except Facebook. any known issue please let us know. We have checked with websense team and confirmed they have allowed the user group has permitted to access facebook.com
Rule is having "All authenticated users" and all outbound traffic. please suggest further.
↧
MMC.exe error
1. I get the following error when I attempt to add a certificate to a TMG Web Site Listener:
The program mmc.exe version 6.1.7600.16385 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: f98
Start Time: 01cef6c6a2396ba4
Termination Time: 33
Application Path: C:\Windows\system32\mmc.exe
Report Id: 9fd0a9c5-62bb-11e3-bcd2-005056890140
2. I have several other sites previously configured and working fine. I just installed Windows Updates that came down for December. My TMG currently runs at SP2 Rollup 3 - 7.0.9193.575 on Windows 2008 R2 SP1. It has been working fine for about a year now.
3. The error appears when configuring a new Listener at the Properties | Certificates Tab as soon as I click the Select certificate button. After a brief moment I get a message saying "not responding". I then close the FTMG management console. The message appears in the application log on the TMG Server.
4. Please Help, need to deploy this application.
↧