Improve company productivity with a Business Account.Sign Up

x
?
Solved

forefront TMG, default gateway & Proxy server

Posted on 2011-09-27
2
Medium Priority
?
855 Views
Last Modified: 2012-05-12
Hi

I Installed Forefront Threat Management Gateway 2010
2 LAN
First Connected to External Internet router at 10.0.0.1
Second to Lacal Network at 192.168.0.0 - 192.168.0.255
Local Gateway address (The Machine I installed on) 192.168.0.150
Gateway (forefront TMG)  is in Workgroup Mode

My questions:

1. I understand that only one DNS must be set in the Gateway (forefront TMG) in the external LAN in My case  the First Connection 10.0.0.1, is that correct ?

2. What should I set for each computer inside my Local Lan for:
    The Default Gateway ?
    The DNS ?
    Should I need to set Proxy server in each computer to 192.168.0.150 Port 8080 ?

0
Comment
Question by:DoronAviad
2 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 2000 total points
ID: 36714660
1. No - dns mus ONLY be set on the INTERNAL nic and must point to the INTERNAL dns server. Nothing should ever know about the external DNS except the DNS forwarders in the YOUR DNS server service.
2. default gateway on internal PC's/Servers will be the TMG internal IP adrress.
3. As above, the Internal DNS
4. Yes

5. These are absolute basics not only for TMG but for Windows generally. I would suggest you read one of the good admin books or get yourself on a course else TMG will trip you up significantly. It is not forgiving when you get it wrong - if you do not know the detail of how it operates then to make it work people often have tp put in entries that also open big holes in their security without realising it.

0
 

Author Closing Comment

by:DoronAviad
ID: 36715750
Thank you
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

I have been asked to explain on many, many occasions the correct way to setup network cards and DNS settings on ISA Server 2004, 2006 and forefront Threat management gateway (FTMG) and have willing done so. I have also promised my self everytime tha…
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

589 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question