We are implementing a solution where we are placing a forefront TMG machine between our clients
and our server and the clients are on a separate VLAN.
Now we are experiencing problems when the clients try doing a Rexec against our server and we believe
it has something to do with the fact that Rexec starts on port 512 but later on switches communication
to the stderr port and when this happens our server don't get a correct SYN ACK back from the client and
eventually the server times out the connection since no SYN ACK has reached the server.
Have anybody implemented a solution with forefront TMG and rexec that knows something about this?