Solved

Testing Microsoft Forefront. with two nics

Posted on 2011-02-28
6
493 Views
Last Modified: 2012-05-11
Hi,
I am trying to install Microsoft Forfront in a test environment. I have a Win 2008 R2 Active directory server and a Win 2008 R2 forefront server. The FF server has two nics on different subnets. Nic 1 is on the same subnet as the AD server (10.1.192.x) and is plugged into a switch providing the lan. Nic two is connected to a router connected to the internet on a 10.35.x.x subnet. AD will provide DNS and DHCP for now. I cannot get the FF server to 'see' both networks, either one or the other, just not both.

Any ideas guys ?

Thanks.
Martyn
0
Comment
Question by:Martyn9098
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 9

Accepted Solution

by:
araberuni earned 250 total points
ID: 35003189
Are you configuring FF TMG edge network? If so, then follow steps:

Step1: Install Win2k8 R2

Step2: NIC config

External NIC, in your case nic2
IP: 10.35.x.x
mask: 255.blah blah
DG:10.35.xx

Internal NIc in your case nic1
IP:10.1.192.x
Mask:255.x.x.x
DG:Null
DNS:Internal DNS server

Step3: join Domain

Now follow this guide http://microsoftguru.com.au/2010/03/08/forefront-tmg-2010-how-to-install-and-configure-forefront-tmg-2010-step-by-step/

Once installed. configure Edge topology. Than configure all firewall rule, policies etc.
0
 
LVL 1

Expert Comment

by:Seatown1984
ID: 35003507
Your internal NIC will not need a gateway configured and your external NIC will not need dns servers configured (as stated above).

You will also need to add a static route to your FF box. Open CMD and enter:

route ADD -p 10.0.0.0 MASK 255.0.0.0 X.X.X.X(internal gateway)

You can use "route PRINT" to view results.
0
 
LVL 1

Author Comment

by:Martyn9098
ID: 35005883
Thanks guys,

I have tried the above and whilst the FF server can 'see' the AD server I cannot get any internet access on it. My persistant routes are as follows.

10.0.0.0        255.0.0.0        10.1.192.1        1
0.0.0.0           0.0.0.0             10.35.1.254      Default.

Whilst this could be a DNS issue I have tried direct IP to a website that does work on another network.

Thanks
0
Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

 
LVL 1

Author Comment

by:Martyn9098
ID: 35006217
I have left two ping windows open. Ping 1 to the AD server and ping 2 to google. I cannot get both pings to respong. It's either one or the other and they do swap from time to time.
0
 
LVL 1

Assisted Solution

by:Seatown1984
Seatown1984 earned 250 total points
ID: 35009802
I may have made a mistake telling you to add a persistant route that opens your subnet that wide. This may conflict with your external route. Try narrowing it down to 10.1.0.0 255.255.0.0 or 10.1.192.0 255.255.255.0 when you create your static route.

This is how I was able to get my TMG to talk to both networks.

0
 
LVL 1

Author Comment

by:Martyn9098
ID: 35334333
Sorry for the late feedback however the issue is now solved. The issue was the server was built with the HP installation disk which seamed to cause the problem. Installing the operating system without the HP Smartstart solved this issue.

Thanks for you help.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The System Center Operations Manager 2012, known as SCOM, is a part of the Microsoft system center product that provides the user with infrastructure monitoring and application performance monitoring. SCOM monitors:   Windows or UNIX/LinuxNetwo…
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
Suggested Courses

628 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question