Sign in
 
HomeProductsLibraryLearnDownloadsSupportForums
Microsoft Forefront TechCenter >
Forefront TMG server blocking certain URLs

Discussion Forefront TMG server blocking certain URLs

  • Monday, December 10, 2012 5:32 AM
     
     
    Sign In to Vote
    0

    We have installed Forefront TMG 2012 server in our network. But some times, it blocks certain URLs.

    There is one gov site http://www.eproc.bihar.gov.in/ which get redirected to https://www.eproc.bihar.gov.in/ROOTAPP/BELTRON.jsp?company=BELTRON. This site is not browsing through TMG server. Without TMG Server or through ISA 2004 server, sites opens properly. But with TMG server, "Session Lost. Please Login" web page appears. 

    We really do not understand what is problem with TMG server? why is it not browsing web page?

    Kindly help to resolve this.

    Thanks in advance.

    Best regards,

     

All Replies

  • Monday, December 10, 2012 12:43 PM
     
     
    Sign In to Vote
    0

    If it works OK with ISA 2004, I'd do the following:

    On the ISA Server, ISA Best Practices Analyzer and run ISA Data Packager. Select to run a Basic Repro and Static Configuration scenario. Follow the on screen instructions and reproduce the problem when prompted.

    Do the same on the TMG Server, this time using the TMG Data Packager.

    Compare the output, starting with

    Review the TMG/ISA Best Practices Report, check for and reported issues.

    WebProxy log files

    Network Monitor capture files from both external and internal side of TMG/ISA

    Hth, Anders Janson Enfo Zipper

     
  • Tuesday, December 11, 2012 9:35 AM
     
     
    Sign In to Vote
    0

    Hi Anders,

    Thank you very much for your reply.

    I checked the same, but did not find anything except below information in network traces result. Below is the message in network traces from my proxy server to affected URL.

    Description == "TCP: [Bad CheckSum]Flags=...A...F, SrcPort=14022, DstPort=HTTP(80), PayloadLen=0, Seq=299511851, Ack=1377435571, Win=63539 (scale factor 0x0) = 63539"Conversation.TCP.Id == 5842

    Is it a reason for my issue and if yes then how to come out of this?

    Appreciate your feed back

    Thanks and Regards,

     
  • Tuesday, December 11, 2012 1:40 PM
     
     
    Sign In to Vote
    0

    The above may or my not have anything to do with this. It is impossible to say without seeing the entire trace. Bad checksum may be a red herring.

    I assume that you reviewed all other information and it does not provide any details? I would assume that you would find useful information in the webproxy log. As this is HTTP, you should be able to see an HTTP session as well in the netmon.

    Another thing that may be useful is to use the developer tools in IE (press F12) and run a trace from the client the working and not working way in order to see what is missing.

    Hth, Anders Janson Enfo Zipper