none
SSL over TMG VPN error 0x80090308

    Question

  • hi! we are using vpn through tmg (nat, not routed) to access our network. Everything works ok but https websites. Everytime we try to access a https website (being connected to the tmg vpn) we get a "page cannot be displayed". If we monitor client's activity on TMG, it shows "error 0x80090308". Nothing helpfull...

    are we forgetting something? there isn't much information on the internet about this error....

    thanks!!!

    Monday, December 10, 2012 2:45 PM

All replies

  • Hi,

    try to create a new custom protocol Definition with port 80 TCP outbound where the Webproxyfilter is not bound to the protocol. Use this new protocol instead of the Default HTTP protocol in the Firewall policy rule which alllows VPN Clients to Access the Webserver. After this rule place a rule which denies the Default HTTP protocol for the VPN Clients (same source and Destination)


    regards Marc Grote aka Jens Baier - www.it-training-grote.de - www.forefront-tmg.de - www.nt-faq.de

    Monday, December 10, 2012 5:41 PM
  • didn't work, but thanks for your reply!

    i did it with https but it still does the same. The funny thing is that http port 80 works ok, the problem is only with https.

    • Edited by Sqlwalker Tuesday, December 11, 2012 3:53 PM
    Tuesday, December 11, 2012 3:52 PM
  • Hi,

    Thank you for the post.

     Before going anything, I'd like to confirm the following:

    1.what is error message from TMG live logging and which rule is block the traffic?

    2.Does this issue occur to all the https websites or certain site?

    3.if the vpn client unable to access certain https site, what about internal clients?

    Regards,


    Nick Gu - MSFT

    Wednesday, December 12, 2012 4:23 PM
    Moderator