Hi,
I have a problem with TMG that I really hope someone can help me with. This problem is killing me.
Scenario:
For a customer we implemented a three-node Hyper-V (2012) cluster. We also implemented a two-node TMG Array. Each TMG array-member is a VM hosted on a Hyper-V node. So in fact one TMG Server on each Hyper-V Server.
- TMG is configured with three network interfaces. An External Network, Internal Network and an Intra-Array Network.
- The External Network and Internal Network is enabled with NLB in unicast mode.
- TMG is to the latest version (TMG 2010 SP2 Rollup 3 (build 7.0.9193.575)).
Problem:
Everything seems to work properly except for one thing. TMG has a very slow upload speed! We have a 10/10 internet connection. We only get about 10/2. Please keep in mind that we are going to 100/100 shortly which should result in 100/20. This problem
is very noticable on Reversed Proxy, VPN and etc. RDP sessions through VPN are very slow.
Findings:
Apparently this used to be a known issue, Microsoft provided the following hotfix which is already included in TMG 2010 Service Pack 2.
Upload speed through Forefront TMG 2010 is very slow on a high speed Internet connection
http://support.microsoft.com/kb/2452980
I have investigated this problem and tried a lot of things. I even rebuilt the TMG array and tested from update to update. I have noticed this problem only occurs when NLB is enabled! And... when I configure NLB in multicast mode, the problem is solved! But... multicast mode does not work properly on this environment. When one TMG array-member is shutdown or reboots TMG doesn't work anymore. I know about statically configuring unicast MAC addresses in Hyper-V on each network adapter. But Hyper-V does not accept static multicast MAC Adressess.
Any suggestion?
Any experience with TMG operate with NLB in unicast/multicast mode on Hyper-V (2012) nodes?
Boudewijn Plomp, BPMi Infrastructure & Security