Hello together,
We installed a two new TMG 2010 Server (same Hardware) in a Array/ NLB configurations, a couple of months ago. There are 4 Networks. Internal, DMZ, Internet and network to another subnet. There are configured correctly as far as i know.
But since the Implementation we have some serious problems for webconnections.
When i open some websites, i experience too many times a delay for about 30 seconds. The websites tries to load, but can't. After a while, i have to use F5 and it works again. This Issue doesn't happen with downloads, and it happen radomely every day on the
company PC's (Windows XP and Windows 7 with same IE config). Some folks, don't have that problem.
There are no importend error log entries and the Session tells us that the connections are well splitted as for the same loadweight.
The configuration:
The networks are NLB-Multicast (no igmp) configured. Except for the internet network, which has enough IPs by our Provider and is directly connected from each Firewall to a cheap switch, which is connected to ISP Router.
The following options are activated: Http-compression, Webproxy (port 8080) for HTTP. webcache is deactivated, and also carp . Authetication is integrated (AD)
"Forefront TMG Clientsupport" and webproxyserver is activated and shows to the VIP of the internal network (192.168.1.1). Automaticly search for settings is activated.
I also tried to switch the settings under Internal network settings for "webbowser"...avoiding proxy webserver for this network and the setting in the IE 8/9 "automaticly search for settings" and the other TMG Client stuff....
Doesn't help.
But what i figured out was that the clients (connected to the first Firewallnode) had more connection problems than the others. Unfortunately , you can't
change the loadweight in NLB MAnager or the TMG 2010 GUI (I have tried that today).
Something tells me that the source of that problem is not the NLB but the webproxy settings. Any tips?
