ISP redundancy and reverse proxy
Greetings, community!We have two EDGE TMG servers and two INTERNAL TMG servers.We have two providers with two dedicated external IP addresses each.I configure ISP Redundancy for each EDGE TMG servers...
View ArticleTMG with RSA for OWA on the same URL as EAS
HiWe have a requirement to use RSA authentication for external OWA users on Exchange 2010. Exchange ActiveSync users will not be affected and will authenticate normally. We currently have OWA, EAS...
View ArticleShare a OPENVPN Connection
Hi,I need to accessa network VPN throughOpenVPNsoftware.If Iconfigure theclientinany workstationruns smoothly,howeverI own50 workstationson my network andI cannotinstallat all. I had FFTMG2010 andI...
View ArticleTMG NLB breacks Radius auth (drops UDP fragments?)
Hi, I have a TMG cluster wit 3 legs - External, Internal1, Internal2 On Internal1 I have all clients and servers On Internal2 I put my Fortigate 80C used for the wireless network. I use Radius for...
View ArticleTMG 2010 Array Brings down the entire internal network
Ok, so this is a weird as it sounds. We've been working with ISA and TMG since 2004, this is the first time I've seen this kind of behavior. Let me explain the details.We implemented 3 TMG 2010 Servers...
View ArticleUser-defined HTTP object not playing ball
We use VMware SRM to replicate VMs to a second site. With a TMG Server at either end of the VPN. SRM management traffic uses HTTP port 80.I have unstable communication between SRM servers because of...
View ArticleTMG - OWA authentication with RSA - 2 login pages
HiI have set up a listener on our TMG server to authenticate external OWA users with RSA. Currently on non RSA OWA users enter their username in the form domain\username which I can see is set on the...
View ArticleForefront TMG 2010 logging permission issue
Hii recently moved the logging folders (firewall/web proxy/ queue) from C drive to D drive on my 2008 R2 serveraccording to tmgBpa recommendationi gave the folder the same permissions as the original...
View ArticleInternet Access through TMG for all HO & Branch office
Dear Experts!,I am new to the Forefront TMG 2010. Have requirement to implement internet access.Head office : 192.168.11.x/24 (192.168.11.1 is the TMG server)Branch Office 1: 192.168.12.x/24Branch...
View ArticleForefront TMG 2010-Some external IP addresses disappear after reboot
Hello, I have a client with a Forefront TNG 2010 server on a 2008 AD domain. It is configured with 2 NICs, an internal and an external. The internal has the internal address of the server bound to...
View ArticleWeb Access Rules for auhenticated and UN authenticated users
Hi all,We're running TMG 2010 Version: 7.0.8108.200.I´m trying to create a rule set that will:a) Allow AUTHENTICATED users web access through a whitelist b) Allow UNAUTHENTICATED users unrestricted web...
View ArticleLockdown Web Server Access to External IP's
HI All, We need give access to our Web server from our third party agents. But i need to lock it down by their IP. Currently web publishing rule is From: Anywhere To: Server IP So how do i allow only...
View ArticleForefront TMG 2010 Error from management console
Hi,I am having a problem connecting to a TMG 2010 array from an installation of TMG management console we are receiving the error 'Refresh Failed' 'Error 0x80070057' ' The Parameter is incorrect'.The...
View ArticleTMG - 0x80090325 -Certificate Chain was issued by an authority that is not...
Hello,I am having some problems with testing a OWA (SSL) rule. I get that message.The TMG belongs to the domain and therefore as far as I know it gets the root certificate of my CA (I have deployed a...
View ArticleTMG Configuration help
Hi I have TMG (2NICs). In front of the TMG is hardware firewall. Inside the network/DMZ we have a lot sites and servers. Now I need to configure access so that everything works but I am struggling, I...
View ArticleTMG - Block Youtube - HTML5
Dear all.I want to block youtube with TMG 2010I try with url nameyoutube.com/* or *.youtube.com or youtube.com:443 or youtube.com:443/* or *.youtube.* ...I aslo add content...
View ArticleMigrating TMG to NetScaler Step By Steps
Hello,Currently we are running TMG 2010 in our environment and Management decided to move from TMG to NetScaler. Looking for good documentation or whitepaper for Migrating TMG to NetScaler.I'd...
View ArticlePublished website needs to use hostname only
Hi,I have a web application that only works when you use the hostname to access it, iehttp://server01/client not http://server01.domain.local/client. It crashes the web browser if we enter the fqdn.Im...
View ArticleProblem with blocking upload file TMG 2010
I'm using TMG 2010. I have 3 rules : 1/Allow Internet Access : protocols : dns, http, https from: loclahost, internalto: External 2/Allow Protocols :protocols : all trafficsfrom: localhost,...
View ArticleTMG 2010 FBA with LDAP /enable change password/ CAS 2010/ MaxPasswordAge of...
Hello,I have this configuration:TMG 2010: member of forest domain A FBA with ldap/Enable change passwordCAS 2010: ChangeExpiredPasswordEnabled is 0 member of domain forest B AD 2003...
View Article