I have an Edge server with Threat Management Gateway installed and properly configured to allow in/outbound mail flow. Inbound email can only be received from our spam provider's relays, Postini to be specific.
This was working fine until I installed Forefront Protection for Exchange. After that, Postini's SMTP tests fail, and I get the following error in the Threat Management logs:
Log Type: Firewall Service
Status: No connection could be made because the target machine actively refused it
Rule: [System] Allow SMTP traffic to the local host for mail protection and filtering.
Under monitoring in TMG:
Email Policy – Configuration Failure
Description: Command failed with error: Cannot bind argument to parameter ‘Bindings’ because it is an empty collection.
There doesn't seem to be much in the way of configuration settings inside of FPE, I can't imagine what broke it, but I do know that mid-install, it had to restart the Transport role, and nothing's been the same since.