Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsIT Pro and developersForefront Threat Management Gateway (TMG) SSL routing without authentication


1982 posts

Uber Geek
+1 received by user: 19

Trusted
Subscriber

Topic # 82205 24-Apr-2011 09:33
Send private message

Hi guys. I'm a self taught home user with limited resources, hence trying to use FTMG to route requests on my single IP to different SSL servers on my domain. I've created a self-signed certificate (http://www.geekzone.co.nz/forums.asp?ForumId=45&TopicId=80185) but now I'm struggling with the Web Publishing / Listener configuration. I don't want FTMG to attempt to authenticate requests, I just want it to forward to the SSL servers (IIS7). I've verified access to these servers from within the domain. I've run the "test rule" on the web publishing rule and all comes up with green ticks, however, when I attempt to access from the outside, FTMG traps and denies the web publishing rule.

Create new topic
Infrastructure Geek
4042 posts

Uber Geek
+1 received by user: 193

Trusted
Microsoft NZ
Subscriber

  Reply # 462014 24-Apr-2011 20:00
Send private message

have you configured both teh TMG server and the web server to trust the self signed certificate? have you run the logging tool in the TMG console to see more about which rule/reason it is blocked?




Technical Evangelist
Microsoft NZ
about.me/nzregs
Twitter: @nzregs



1982 posts

Uber Geek
+1 received by user: 19

Trusted
Subscriber

  Reply # 462092 25-Apr-2011 10:01
Send private message

Certificates (TMG, SharePoint & Exchange) are issued by trusted root CA. Rule test is TMG tests come back green. Request is denied with the following

HTTP Status Code : 12202 Forefront TMG denied the specified Uniform Resource Locator (URL).

URL is correctly correlated to SharePoint rule.

Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Intel introduces new 8th Generation processors
Posted 21-Aug-2017 19:02

Trend Micro launches Home Network Security
Posted 21-Aug-2017 18:38

Avondale College students at top of Microsoft Office Specialist World Championship
Posted 21-Aug-2017 14:11

Garmin introduces inReach SE+ and inReach Explorer+
Posted 21-Aug-2017 14:05

Public Wi-Fi plus cloud file sharing
Posted 18-Aug-2017 11:20

D-Link NZ launches professional Wireless AC Wave 2 Access Point for businesses
Posted 17-Aug-2017 19:25

Garmin introduces the Rino 700 five-watt two-way handheld radio
Posted 17-Aug-2017 19:04

Garmin announces the Foretrex 601 and Foretrex 701 Ballistic Edition for outdoor and tactical use
Posted 17-Aug-2017 19:02

Brightstar announces new distribution partnership with Samsung Knox platform in Australia
Posted 17-Aug-2017 17:07

Free gig-enabled WiFi network extends across Dunedin
Posted 17-Aug-2017 17:04

Samsung expands with connect Gear S3 Frontier
Posted 17-Aug-2017 15:55

Fact-checking Southern Cross Next cable is fastest to USA
Posted 17-Aug-2017 13:57

Thurrott says Microsoft Surface is dead last for reliability
Posted 16-Aug-2017 15:19

LibreOffice 5.4 works better with Microsoft Office files
Posted 16-Aug-2017 13:32

Certus launches Cognition
Posted 14-Aug-2017 09:31


Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.