Hi
We are running TMG 2010 with SP2 Rollup 2
We have the below scenario
Site A site to site Site B
Client VPN------------TMG------------{---isp/internt----}---------VPN(hardware)-----------WEB SERVER
SIte to Site VPN is functioning fine (IPSec with preshared Key)
Client VPN can access Site A fine (PPTP VPN)
Site A can access Web Server in Site B fine
*No NAT is configured
Issue:
When Client VPN trys to talk to Web Server in SIte B, we can see the traffic be accepted and forwarded on by TMG (Rules allow this through), but when the Web Server on Site B acknowledges the request and trys to talk with Client VPN, TMG detects this as a SPOOFED packet and drops this.
Any suggestions?
