hope you can help.
I am trying to setup POP3 mail access for my exchange 2010 environment which has 2 CAS servers - only one is use at the moment. There is also a NLB in the DMZ to act as a proxy for the CAS servers and a TMG firewall.
we currently have MS Forefront TMG setup for our firewall proxy and internet traffic. Exchange ActiveSync is also configured via the TMG and works great as does OWA using the "mail.xxx.com" ssl cert.
Our exchange and CAS servers have the "mail.xxx.com" certificate installed and the POP 3 services are running on both the CAS and the mailbox servers.
POP3 has been setup on the mailbox servers under client access to use the "mail.xxx.com" certificate (same as the ActiveSync cert - could this be an issue? do i need a different SSL cert for POP 3?)
I have created a mail server publishing rule and within this rule also set the option "request appear to come from the ISA server" but still no luck.
i can see the TMG log when i test with a pop 3 test app that the default rule has denied access. i believe this is an issue with TMG, but cannot figure out where the issue is. I have also tried to test with telnet within the LAN to the POP 3 port - 110 but i can’t even telnet in. i can however telnet in on the SMTP port within the LAN.
Nothing is being blocked on the firewall (this is what i have been advised by the network team).
Any help appreciated.