hi! we are using vpn through tmg (nat, not routed) to access our network. Everything works ok but https websites. Everytime we try to access a https website (being connected to the tmg vpn) we get a "page cannot be displayed". If we monitor client's activity on TMG, it shows "error 0x80090308". Nothing helpfull...
are we forgetting something? there isn't much information on the internet about this error....
try to create a new custom protocol Definition with port 80 TCP outbound where the Webproxyfilter is not bound to the protocol. Use this new protocol instead of the Default HTTP protocol in the Firewall policy rule which alllows VPN Clients to Access the Webserver. After this rule place a rule which denies the Default HTTP protocol for the VPN Clients (same source and Destination)
regards Marc Grote aka Jens Baier - www.it-training-grote.de - www.forefront-tmg.de - www.nt-faq.de
Thank you for the post.
Before going anything, I'd like to confirm the following:
1.what is error message from TMG live logging and which rule is block the traffic?
2.Does this issue occur to all the https websites or certain site?
3.if the vpn client unable to access certain https site, what about internal clients?
Nick Gu - MSFT