Sign in
 
HomeProductsLibraryLearnDownloadsSupportForums
Microsoft Forefront TechCenter >
Need help with routing issue on Forefront TMG

Discussione generale Need help with routing issue on Forefront TMG

  • Tuesday, January 29, 2013 8:53 PM
     
     
    Sign In to Vote
    0

    I need some help setting up Forefront TMG to allow access to other subnets.

    Site 1 Subnet 192.168.100.1 to 192.168.100.254

    Site 2 Subnet 10.0.1.1 to 10.0.0.254 and  10.0.1.1 to 10.0.1.254

    MPLS connection between Site 1 and Site 2 with static routes for traffic to pass through each other's gateway.

    We use Forfront TMG for VPN and to access Internet from both sites. All site 1 internet traffic passes through MPLS and out to Site 2 via a Forefront TMG server.

    All computers in site 1 are able to connect to all shares and ping computers in Site 2.

    All computers in Site 2 with 10.0.0.1 to  10.0.0.254 IP are able to connect to all shares and ping computers to site 1

    All computers in Site 2 with 10.0.1.1 to 10.0.1.254 IP are able to ping any IP in site 1 but are unable to browse folders using windows explorer or access any shares.

    Any help in solving this issue is much appreciated.

    Thanks in advance.

     

All Replies

  • Wednesday, January 30, 2013 3:03 PM
    Moderator
     
     
    Sign In to Vote
    0

    Hi,

    Thank you for the post.

    “All computers in Site 2 with 10.0.1.1 to 10.0.1.254 IP are able to ping any IP in site 1 but are unable to browse folders using windows explorer or access any shares.” – where do you place the TMG server, on site1 or site2? Do you create access rule to allow network share?

    Regards,

    Nick Gu - MSFT

     
  • Thursday, February 07, 2013 3:29 AM
     
     
    Sign In to Vote
    0

    Nick,

    Thanks for the reply.

    I had couple of mistakes in my original post. I just want to be sure I gave you the correct information.

    Site 1 Subnet 192.168.100.1 to 192.168.100.254 - IP range in Internal

    Site 2 Subnet 10.0.0.1 to 10.0.0.254 and  10.0.1.1 to 10.0.1.254 - IP range in Internal

    MPLS connection between Site 1 and Site 2 with static routes for traffic to pass through each other's gateway.

    We use Forfront TMG for VPN and to access Internet from both sites. All site 1 internet traffic passes through MPLS and out to Site 2 via a Forefront TMG server.

    All computers in Site 1 are able to connect to all shares and ping computers in Site 2.

    All computers in Site 2 with 10.0.0.1 to  10.0.0.254 IP are able to connect to all shares and ping computers to site 1

    All computers in Site 2 with 10.0.1.1 to 10.0.1.254 IP are able to ping any IP in site 1 but are unable to browse folders using windows explorer or access any shares.

    TMG is in site 2. I also have a firewall policy that allows all outbound traffic from Internal, VPN Clients and local host to Intenal, VPN Clients and localhost.

    Jut in case I'm missing something, can you tell me how to create access rule to allow network share.

    Thanks.