Wrong source IP when accessing internet directly from TMG server

Posted by jarod1701 on Server Fault See other posts from Server Fault or by jarod1701
Published on 2010-04-22T13:26:41Z Indexed on 2010/04/22 13:33 UTC
Read the original article Hit count: 351

Hi everyone,

after implementing a ForeFront TMG server I'm facing only one problem:

After I added a second IP to the external adapter I had to manually set "NAT Address Selection" inside the network rule "Internet Access" to the first IP since all others would get blocked by the CISCO firewall.

This configuration works as long as traffic comes from the internal network (e.g. browser on clients). Traffic from the TMG directed to the internet always carries the second IP as it's source address and gets blocked.

All our other TMGs/ISAs are running fine and I never came across this problem-

Does anybody have a clue, coz I don't?!

Kevin

© Server Fault or respective owner

Related posts about threat-management-gateway

Related posts about ip