internal network and local host can't ping devices in perimeter network

All Replies

• Tuesday, December 11, 2012 5:15 AM

   

   
  

  0

  Hi,

  please check the TMG live Logging to see if a Firewall policy rule is blocking the traffic. If you do not see the Firewall policy rule which blocks the traffic in the Live logging there may be a Routing problem.
  The internal clients ad the devices in the DMZ (Perimeter network) are Secure NAT clients?

  ---

  regards Marc Grote aka Jens Baier - www.it-training-grote.de - www.forefront-tmg.de - www.nt-faq.de

  • Reply
  • Quote

   
• Tuesday, December 11, 2012 5:35 PM

   

   
  

  0
  Thanks.  What I found from the log is that the source IP is the IP address of the outside interface rather than the inside interface.  I would not want to have a route from the outside to the perimieter network, and there is a route setup from the inside to the perimeter network.  Any idea how to force the source IP to be the inside interface? 
  • Reply
  • Quote

   
• Wednesday, December 12, 2012 2:44 PM

  Moderator

   

   
  

  0

  Hi,

  Thank you for the post.

  You may launch getting started wizard to reconfigure network template as per: http://www.isaserver.org/tutorials/Microsoft-Forefront-TMG-How-use-TMG-network-templates.html, and then configure NIC refer to: http://social.technet.microsoft.com/wiki/contents/articles/recommended-network-adapter-configuration-for-forefront-tmg-enterprise-edition-servers.aspx

  Regards,

  ---

  Nick Gu - MSFT

  • Proposed As Answer by Nick Gu - MSFTMicrosoft Contingent Staff, Moderator Friday, December 14, 2012 4:47 PM
  • Marked As Answer by Nick Gu - MSFTMicrosoft Contingent Staff, Moderator Monday, December 17, 2012 2:32 AM
  •  
  • Reply
  • Quote