I have a newly installed Windows 2008 R2 SP2 server running Microsoft Forefront TMG 2010 with all latest SPs and rollups. On the same machine I have version 5.0.1 of Mcafee ePO. I am using the TMG server primarily as a filtering web proxy as my central firewall function is being performed by another device.
I am trying to configure ePO and during the configuration it contacts my AD and does a broadcast for all machines on my LAN. However it has been failing which I found is down to TMG blocking the broadcast (log screenshot attached). Now I have created rules in the firewall that allow NetBIOS sessions, names etc with no effect. I have tried enabling the configuration of the system policy and making sure the rule that allows NetBIOS from Local Host to the Internal network is set to allow but no effect.
I have seen many articles related to NetBIOS being blocked due to spoofed addresses but these don't seem to address my problem.
If I had any hair it would have fallen out by now so any help much appreciated.