Microsoft Forefront TechCenter >

Forefront Forums >

Read Only - Forefront Edge Security - Publishing >

TMG 2010

TMG 2010

Sunday, March 14, 2010 10:49 AM

0

Hi , installed TMG on 2008R2 domain joined server, network is basic, the server is sat behind a firewall and as this is a test lab the network is a basic 255.255.255.0/24

I have two nics in the server as I have createa a web listener.
Nic one named internal config: IP 192.168.0.9, no gateway set and DNS points to the insternal DNS

Nic two named External config: IP 192.168.0.250, gatewat is the firewall 192.168.0.1, DNS point to internal and external
Within the networks the type - internal is configured for the entire subnet range being used.

On the nwtwork setup wizard i have defined the network as an edge fire wall. I tried to make it to a back firewall but i would not sabe the config.

I created a OWA publishing rule and associated it with the listener. From the server itself I run the rule tet and it connects fine
When i run the traffic sim, specify the source to be and external address and url to be the external url the result fails with Denied Traffic, Rulne name : default rule, rule order 21
From external to internal
network rule name :noe, Protocol Https, both nwtwork relationship and application filer are blank. When i look at the rule its the last one which stops all traffic

When I look in alerts i get the following

Alert Information
Description: The Web Proxy filter failed to bind its socket to 192.168.0.250 port 443. This may have been caused by another service that is already using the same port or by a network adapter that is not functional. To resolve this issue, restart the Microsoft Firewall service. The error code specified in the data area of the event properties indicates the cause of the failure.
The failure is due to error: An attempt was made to access a socket in a way forbidden by its access permissions.

The Web Proxy filter failed to bind its socket to 192.168.0.9 port 443. This may have been caused by another service that is already using the same port or by a network adapter that is not functional. To resolve this issue, restart the Microsoft Firewall service. The error code specified in the data area of the event properties indicates the cause of the failure.
The failure is due to error: An attempt was made to access a socket in a way forbidden by its access permissions.

The Web Proxy filter failed to bind its socket to 127.0.0.1 port 443. This may have been caused by another service that is already using the same port or by a network adapter that is not functional. To resolve this issue, restart the Microsoft Firewall service. The error code specified in the data area of the event properties indicates the cause of the failure.
The failure is due to error: An attempt was made to access a socket in a way forbidden by its access permissions.

Can anyone offer some advice its driving me crazy.
Must be a NIC or name resolution issue?
Cheers
I have now disabled IIS and it seems to stop these errors, now the server cant find the url!
cheers

All Replies

Sunday, March 14, 2010 6:04 PM

0
Hi,

this error is typical when another service like IIS is hosted on TMG and uses the same port as TMG for webserver publishing.
Disable socket pooling or uninstall IIS on TMG.

regards Marc
www.nt-faq.de
www.it-training-grote.de
www.forefront-tmg.de
- Proposed As Answer by Nick Gu - MSFTMicrosoft Contingent Staff, Moderator Thursday, March 18, 2010 7:58 AM
- Marked As Answer by theMadferret Thursday, March 18, 2010 8:05 AM
Wednesday, November 03, 2010 3:56 PM

0

Hello,

How do I disable socket pooling? Tks.

Frequently asked questions - Forums help