How do I bypass MS TMG 2010 Proxy for domain administrator

How do I configure MS TMG2010 Gateway so my domain Administrator account bypasses it for internet access?
TMG doesn't play well with all of the 3rd party downloaders.
HowzattAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

bbaoIT ConsultantCommented:
if you don't a physical link letting you bypass the Internet connection (say if the TMG is located just behind your only Internent connection from the ISP, you have to create a firewall rule to allow and enable ANY traffic from specific internal IPs, subnets or even users (if authenticated) to to ANY IPs on the Internet (external networks).
0
HowzattAuthor Commented:
Our External Internet Breakout is an ADSL grade internet connection. Our Firewall sits between the TMG & the Internet breakout.

So I should ignore the TMG (remove the Proxy settings from the browser) and focus on the firewall instead?
0
HowzattAuthor Commented:
FYI our Firewall is a Watchguard Firebox X550e
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

bbaoIT ConsultantCommented:
> ignore the TMG (remove the Proxy settings from the browser)

it seems your TMG is not working as a real firewall separating your LAN and WAN, and just a proxy server (probably having only one leg) sitting on your LAN. is it correct? if yes, you may safely bypass it and access the Internet directly through your Watchguard firewall.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
HowzattAuthor Commented:
That is correct.
So I just need to setup an outbound rule to allow port 80 from either my client IP or username?
0
bbaoIT ConsultantCommented:
> probably having only one leg) sitting on your LAN. is it correct?

if this is correct (proxy sitting on the same LAN + proxy having one leg), you actually no need to do that. simply remove IE's proxy settings (don't use proxy), that's it.

BTW, also make sure the computer's default gateway points or goes to the given firewall. this is actually the most important thing but should have been done by your DHCP service automatically. :-)
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Forefront ISA Server

From novice to tech pro — start learning today.