Hi, I have a client that asked about an unusual request related to a web sniffer that shows a private IP address that TMG uses to publish the OWA site.
The web site: http://web-sniffer.net, when you run a URL request for the OWA site it shows this setting:
WWW-Authenticate: Basic Realm="172.16.x.x" which is the External Listening IP Address on the TMG for the OWA Web Publishing rule. The Pubilshing rule was created using the Exchange Publishing Wizard on the TMG. It has its own web listener, listening only to that IP address.
The TMG Server is behind a Checkpoint Firewall, so he doesn't have the public external IP Address directly assigned to the external NICs, that's why you can see it's a Private IP.
The Security Department considers this as a vulnerability and wants to hide this Private IP Address from showing there. Is there a way to do this? I'm not sure if this can be changed at all but let me know if anyone knows how...
Thanks for the replies
Eduardo Rojas