Forefront TMG 2010 Back-End with multiple VLAN

Hi,

I know it's been ask this question already but still haven't figure out what went wrong in my setup.  

Current Environment:
ISP--->Router---->FireWall Appliance------>Cisco L3 switch, all the internal routing is done by L3 switch.

Proposed Environment:

ISP--->Router---->FireWall Appliance------>TMG 2010----->Cisco L3 switch, all the internal routing is done by L3 switch.

i have 3 VLANS configure on L3 switch

VLAN10
Network 10.60.10.0  -----> Clients Default Gateway 10.60.10.1

VLAN50
Network 10.60.50.0  -----> Clients Default Gateway 10.60.50.1

VLAN100
Network 10.60.100.0 ----> Clients Default Gateway 10.60.100.1

TMG Public Interface: 10.60.0.2/24
Gateway: 10.60.0.1   ----> Which is LAN interface of firewall appliance.
DNS: 8.8.8.8

TMG Private Interface: 10.60.1.1/24
Gateway: 0.0.0.0 
DNS: 10.60.50.2 -----> Internal DNS Server.

Layer 3 Switch IP: 10.60.1.2/24

After implementing TMG, i can go out from internet, from clients point of view i can ping all the 3 vlans 
but i can't ping the TMG Private interface which is 10.60.1.1, from client traceroute i can reach only 
default GW the L3 switch vlans IP.

But if you login to L3 switch i can ping all the VLANS and i can ping also the Private IP address of 
TMG which is 10.60.1.1, from TMG server i can't ping any vlan except only for L3 interface ip which is 10.60.1.2.

TMG Server aready add the 3 VLAN's to "Internal" network deinition.


C:\>route print
===========================================================================
Interface List
 14...00 80 86 be 01 05 ......Intel(R) PRO/1000 MT Network Connection #3
 13...00 90 46 be 00 02 ......Intel(R) PRO/1000 MT Network Connection #2
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0        10.60.0.1        10.60.0.2    266
        10.60.0.0  255.255.255.128         On-link         10.60.0.2    266
        10.60.0.2  255.255.255.255         On-link         10.60.0.2    266
      10.60.0.127  255.255.255.255         On-link         10.60.0.2    266
        10.60.1.0    255.255.255.0         On-link         10.60.1.1    266
        10.60.1.1  255.255.255.255         On-link         10.60.1.1    266
      10.60.1.255  255.255.255.255         On-link         10.60.1.1    266
       10.60.10.0    255.255.255.0        10.60.1.2        10.60.1.1    266
       10.60.50.0    255.255.255.0        10.60.1.2        10.60.1.1    266
      10.60.100.0    255.255.255.0        10.60.1.2        10.60.1.1    266
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         10.60.1.1    266
        224.0.0.0        240.0.0.0         On-link         10.60.0.2    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link         10.60.1.1    266
  255.255.255.255  255.255.255.255         On-link         10.60.0.2    266
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0        10.60.0.1  Default
      10.60.100.0    255.255.255.0        10.60.1.2     256
       10.60.10.0    255.255.255.0        10.60.1.2     256
       10.60.50.0    255.255.255.0        10.60.1.2     256
===========================================================================

Hope you guys can help me on this, thanks advance.