Hello,
I am having an issue with getting my TMG (EE) server to allow PING from a client on the same subnet. This is a lab enviornment, but the same thing is happening my production enviornment. I am attempting to allow PINGs from CLIENT01 to get to TMG01 and allow TMG01 to respond back to CLIENT01. When I ping the TMG server, I get no reply on the client. I see this traffic on the TMG live log and it's is being DENIED by the default rule. See attached image. Am I missing something here? I've even tried creating an access rule and no luck.
Details:
-Single NIC on TMG01
-Only Firewall Policy is the Default Deny policy
-CLIENT01 has been added to Remote Management Computers computer set
-Verified the System Policy Editor has ICMP (Ping) enabled and has Remote Management Computers in the FROM tab
-System Policy Rule:
Name: Allow ICMP (PING) requests from selected computers to Forefront TMG
Action: Allow
Protocols: PING
From/Listener: Enterprise Remote Management Computers & Remote Management Computers
To: Local Host
Condition: All Users
Policy: System