asked on

How to change the TTL Value of all outgoing packets in Microsoft Forefront TMG 2010?

I would like to change the TTL to 128 for all packets going from my external NIC. Using Linux IP Tables I can use the command "iptables -t mangle -A POSTROUTING -o eth0 -j TTL --ttl-set 128". How do I do the same thing using Microsoft Forefront TMG 2010?

Keith Alabaster

You don't use FTMG to do it - the TTL is set at the OS level, not the application level. Anyway, the default value for Windows 2008 and Vista is 128 by default.

This is a link to a reference just in case you want to set it to something else. - yes, they spelt it wrong but the link is correct.....
http://www.windowsreference.com/networking/change-default-time-to-live-ttl-in-windows-server-2008-windwos-vista/

akevinbailey

ASKER

The problem is that when a client desktop connect to an external site, FTMG deprecates the TTL of those packets by one. I want to reset those packets TTL to 128 so it appears that all traffic comes from FTMG server. I don't think setting the default TTL on the interface will fix this. But I will give it a try.

akevinbailey

ASKER

It didn't work. It does not reset the TTL of the traffic coming from the private network. Is there a way in Windows 2008 R2 or FTMG to force all traffic coming from a NIC to have a TTL of 128?

ASKER CERTIFIED SOLUTION

akevinbailey

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial