Solved

forefront TMG, default gateway & Proxy server

Posted on 2011-09-27
2
775 Views
Last Modified: 2012-05-12
Hi

I Installed Forefront Threat Management Gateway 2010
2 LAN
First Connected to External Internet router at 10.0.0.1
Second to Lacal Network at 192.168.0.0 - 192.168.0.255
Local Gateway address (The Machine I installed on) 192.168.0.150
Gateway (forefront TMG)  is in Workgroup Mode

My questions:

1. I understand that only one DNS must be set in the Gateway (forefront TMG) in the external LAN in My case  the First Connection 10.0.0.1, is that correct ?

2. What should I set for each computer inside my Local Lan for:
    The Default Gateway ?
    The DNS ?
    Should I need to set Proxy server in each computer to 192.168.0.150 Port 8080 ?

0
Comment
Question by:DoronAviad
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 500 total points
ID: 36714660
1. No - dns mus ONLY be set on the INTERNAL nic and must point to the INTERNAL dns server. Nothing should ever know about the external DNS except the DNS forwarders in the YOUR DNS server service.
2. default gateway on internal PC's/Servers will be the TMG internal IP adrress.
3. As above, the Internal DNS
4. Yes

5. These are absolute basics not only for TMG but for Windows generally. I would suggest you read one of the good admin books or get yourself on a course else TMG will trip you up significantly. It is not forgiving when you get it wrong - if you do not know the detail of how it operates then to make it work people often have tp put in entries that also open big holes in their security without realising it.

0
 

Author Closing Comment

by:DoronAviad
ID: 36715750
Thank you
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question