Forefront TMG seems to block connections from one IP address

Posted on 2011-10-14
Medium Priority
Last Modified: 2012-05-12
I have a test environment with the usual 2008 R2 DC & Exchange LAN setup, secured by TMG 2010.
We also have a production environment with Sharepoint, Exchange etc hosting an intranet and Exchange OWA; all of this is also secured by TMG 2010.
Both environments are on seperate internet lines & ISPs and are not connected in any form or shape. There is also NO VPN access from one environment into the other so they are completely seperate.
In the test environment I have full internet access and can access the internet in our production environment, let's call it https://www.domain.com but I am unable to connect to the OWA subdomain https://webmail.domain.com
There is however nothing wrong with external access to OWA as I can access it from various other PCs and smartphones, proofing that the OWA setup works fine externally and internally.

The only thing I can think of is that the TMG firewall in our production environment somehow blocks requests that originate from our test environment.
Question by:mark-199
  • 3
LVL 16

Expert Comment

by:Madan Sharma
ID: 36970008
Hi Mark
i think you need to setup HTTP to HTTPS Redirection Options in Forefront TMG
please have a look in the following link:- http://tmgblog.richardhicks.com/2011/01/06/http-to-https-redirection-options-in-forefront-tmg-and-uag/

Assisted Solution

mark-199 earned 0 total points
ID: 36974194
Akicute555, that's not the issue, I can connect from outside my test domain to OWA and inside the test environment I already tried it with https://...

Accepted Solution

mark-199 earned 0 total points
ID: 36979940
It suddenly started to work! I put it down to a line issue in our production environment.

Author Closing Comment

ID: 37010523
Please see previous comment.

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There are three types of ISA client that can be configured - these can be individual clients or multiples of a client on each PC or server SecureNAT. A SecureNAT client for ISA server is a client machine, work station or server, that has its defa…
Forefront Threat Management Gateway 2010 or FTMG comes with some very neat troubleshooting tools built-in when trying to identify what is actually happening behind the scenes within the product when traffic is passing through its interfaces. To the …
This Micro Tutorial will teach you how to add a cinematic look to any film or video out there. There are very few simple steps that you will follow to do so. This will be demonstrated using Adobe Premiere Pro CS6.
This lesson discusses how to use a Mainform + Subforms in Microsoft Access to find and enter data for payments on orders. The sample data comes from a custom shop that builds and sells movable storage structures that are delivered to your property. …
Suggested Courses

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question