VPN setup through TMG

Posted on 2014-08-27
Last Modified: 2014-09-28
Hi Guys,

I've been trying to configure client VPN access into a TMG server,
The VPN client is able to connect to the TMG server - no problem, but they are unable to access any other servers behind TMG.

I think part of the problem is that TMG is on a different IP network than the rest of the internal network.
The internal network is on 10.0.0.x while the TMG server is on (internal), (external)
There is a fail-over router between -

The TMG server can access all Internal Network resources from 10.0.0.x  
We have a static route on the TMG server to the 10.0.0.x network.

In TMG remote access policy (VPN), I've configured a manual VPN range available to VPN clients of - 240
When connecting with VPN to the TMG server, I am allocated an address from this range, which is correct.
But I am for example unable to ping / access server which is a server on the internal network.

Any ideas will help!?
Question by:Rupert Eghardt
    1 Comment
    LVL 23

    Accepted Solution

    Did you crate an access rule to allow VPN users to internal network ?

    While connected VPN from a client mahcine, run
    "pathping internal_IP
    Does it go via the correct route ?
    Can you ping the vpn client from the internal server ? also pathping ?

    Featured Post

    IT, Stop Being Called Into Every Meeting

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Join & Write a Comment

    I had a question today where the user wanted to know how to delete an SSL Certificate, so I thought that I would quickly add this How to! Article for your reference. WHY WOULD YOU WANT TO DELETE A CERTIFICATE? 1. If an incorrect certificate was …
    The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
    This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
    This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…

    728 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now