Sign in
 
HomeProductsLibraryLearnDownloadsSupportForums
Microsoft Forefront TechCenter >
Forefront TMG 2010 Site to Site VPN connections always disabled

Locked Forefront TMG 2010 Site to Site VPN connections always disabled

  • Wednesday, January 06, 2010 8:11 PM
     
     
    Sign In to Vote
    0
    I've created a site to site VPN connection in TMG.  The setup is a very basic one using PPTP between the two sites.  The connection is always listed as "disabled" in routing and remote access in TMG.  The remote site is running Server 2008 R2 and is using RRAS to establish the site to site tunnel.  Can you tell me why the connection is always listed as disabled in TMG?  The connection attempt always fails and the reason given matches the problem, the interface is disabled.
    Rob
       

    All Replies

    • Tuesday, January 19, 2010 11:57 PM
       
       
      Sign In to Vote
      0
      I've created a site to site VPN connection in TMG.  The setup is a very basic one using PPTP between the two sites.  The connection is always listed as "disabled" in routing and remote access in TMG.  The remote site is running Server 2008 R2 and is using RRAS to establish the site to site tunnel.  Can you tell me why the connection is always listed as disabled in TMG?  The connection attempt always fails and the reason given matches the problem, the interface is disabled.
      My experience is totally the same. I wish I saw this thread before starting my own one. Sorry for that. Hope we'll find some assistance here or there.
         
      • Friday, April 30, 2010 2:50 PM
         
         
        Sign In to Vote
        0

        Check the device manager, enable SHOW HIDDEN DEVICES from VIEW menu and see if its enabled.

        Regards.
           
        • Saturday, May 01, 2010 7:42 PM
           
           Answered
          Sign In to Vote
          0
          Check the device manager, enable SHOW HIDDEN DEVICES from VIEW menu and see if its enabled.
          Thanks for you help, but the problem is actually fixed by KB980674: “An IPsec VPN site-to-site tunnel or a PPTP VPN site-to-site tunnel does not work if you enable integrated NLB on a Forefront TMG 2010 array”.
             
          • Sunday, May 02, 2010 3:09 AM
             
             
            Sign In to Vote
            0
            thanks. You using NLB? I have seen NLB issues with IPSEC Only, so far. However, thatnks for the heads-up.
            Regards.
               
            • Sunday, May 02, 2010 9:34 AM
               
               
              Sign In to Vote
              0

              Yep, I tested with 2-node NLB array and PPTP site-to-site tunnel.

              Though another issue arised. That's not relevant to this thread, but please see comments here if you're interested.

                 
              • Sunday, May 02, 2010 7:03 PM
                 
                 
                Sign In to Vote
                0

                yeah.. that one.. this is a known issue. ISA was all about 32 bit RPC. A colleague came across it when one of the site had exchange and had to be migrated to other, to Ex 2010 Beta which is all 64 bit...

                Thanks for the pointers.

                Regards.