[Webinar] Streamline your web hosting managementRegister Today

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 839
  • Last Modified:

forefront TMG, default gateway & Proxy server


I Installed Forefront Threat Management Gateway 2010
First Connected to External Internet router at
Second to Lacal Network at -
Local Gateway address (The Machine I installed on)
Gateway (forefront TMG)  is in Workgroup Mode

My questions:

1. I understand that only one DNS must be set in the Gateway (forefront TMG) in the external LAN in My case  the First Connection, is that correct ?

2. What should I set for each computer inside my Local Lan for:
    The Default Gateway ?
    The DNS ?
    Should I need to set Proxy server in each computer to Port 8080 ?

1 Solution
Keith AlabasterEnterprise ArchitectCommented:
1. No - dns mus ONLY be set on the INTERNAL nic and must point to the INTERNAL dns server. Nothing should ever know about the external DNS except the DNS forwarders in the YOUR DNS server service.
2. default gateway on internal PC's/Servers will be the TMG internal IP adrress.
3. As above, the Internal DNS
4. Yes

5. These are absolute basics not only for TMG but for Windows generally. I would suggest you read one of the good admin books or get yourself on a course else TMG will trip you up significantly. It is not forgiving when you get it wrong - if you do not know the detail of how it operates then to make it work people often have tp put in entries that also open big holes in their security without realising it.

DoronAviadAuthor Commented:
Thank you

Featured Post

The new generation of project management tools

With monday.com’s project management tool, you can see what everyone on your team is working in a single glance. Its intuitive dashboards are customizable, so you can create systems that work for you.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now