Monday, February 18, 2013 3:44 PMMorning, i have a problem with a rule in Forefront TMG 2010, i need to see an IP Cameras over my local Lan and Internet, when i try to see my Cameras over Internet, i don't have any problem, but when i try to see my Cameras in my local Lan, have a lot of problems, because i need to publish in H.264 Video Format, i don´t know what is the specific rule to solve this issue, my Cameras work with this Protocols RTP Over RTSP Over HTTP, please helpme with this, y don´t know how i can publish on my local LAN, my Cameras.
Monday, February 18, 2013 5:13 PM
the cameras are not in the same IP subnet (TMG Network) as the internal Clients? If no you have to create a Firewall policy rule which allows the same protocols as the Publishing rule on the TMG Server for Internet Access but the protocol direction must be outbound instead of inbound as for the Publishing rule.
regards Marc Grote aka Jens Baier - www.it-training-grote.de - www.forefront-tmg.de - www.nt-faq.de
Tuesday, February 19, 2013 2:58 PM
Thks Marc, but i forget explain something, my Cameras are worked in my local lan with NAT, to the Internet, like this (Local lan 10.x.x.x nat 189.34.x.x) when i try to see my camera in my LAN, the tmg, don´t let me see my cameras i dont know what happend, the TMG givme this error, and i found other problem, the destination IP is not working how i like(Just in my LAN, in the Internet works perfect)
<id id="L_LogPane_LogType">Log type: </id><id id="L_LogPane_WebProxyForward">Web Proxy (Forward)</id> <id id="L_LogPane_Status">Status: </id>12209 Forefront TMG requires authorization to fulfill the request. Access to the Web Proxy filter is denied. <id id="L_LogPane_Rule">Rule: </id>Internet H <id id="L_LogPane_Source">Source: </id>Internal (10.x.x.x) <id id="L_LogPane_Destination">Destination: </id>Internal (172.x.x.x) <id id="L_LogPane_Request">Request: </id>GET http://www.videovi.com <id id="L_LogPane_FilterInfo">Filter information: </id>Req ID: 1f3a07f6; Compression: client=No, server=No, compress rate=0% decompress rate=0% <id id="L_LogPane_Protocol">Protocol: </id>http <id id="L_LogPane_User">User: </id>anonymous
the rule in the firewall policy on TMG is like this, All inbound protocols-from internal to my pages(www.videvi.com, etc,), all users, i hope your help please.
Friday, February 22, 2013 5:13 AMModerator
Thank you for the post.
Would you please elaborate the network topology? Does the cameras subnet behind TMG internal network? As far as I know, the internal traffic will not pass through the TMG server.
Nick Gu - MSFT