I have a simple 192.168.0.0/24 network with TMG as perimeter gateway on 192.168.0.254.
There is another network I need to route to which is 172.20.0.0. A third party VPN Device (Cisco) is on 192.168.0.253.
Currently in order to get this to work with the gateway I want (.254), I need to add static routes to the PCs. I want TMG to handle the routing without need for PC static routes...
I have tried the following:
Added 172.20.0.0 to internal networks on TMG
Added route on TMG Server (172 etc via 253)
Creating new network called X (172.20.0.0/24)
Network rule (ROUTE Internal <-> X)
Access rule (ALLOW ALL IN/OUT Internal <-> X)
Also no good. Packets are being dropped as spoofed.
Is there a way of redirecting all traffic hitting TMG destined for 172.20.x.y to 192.168.0.253?
Perhaps this is not possible... Diagram attached for idea of what's going on.