Hello together,
how can i change the following behaviour:
i have:
2x TMG Enterprise Servers as Array
NLB on inside and perimeter network
between preimeter network and the internet/outside network is an cisco asa firewall
-> the primary nlb address of the perimeter network has an NAT entry for public ip address
Now if i publish a website or connect through vpn on the outside ip address, all works fine.
But if i use the TMG Enterprise Array as Proxy Server i end up in an timeout of the request.
-> i use the inside NLB address to access the proxy server
-> the traffic should go through the perimeter network to the cisco asa
Ok so far so good but the tmg servers use their own "physical" ip addresses to communicate with the asa instead of the preimeter nlb address. How can i change or route around this problem that the cisco asa only has to communicate with the nlb address
instead of the physicals?
Thanks in advance