Forefront Threat Management Gateway (TMG) SSL routing without authentication

Forums › IT Pro and developers › Forefront Threat Management Gateway (TMG) SSL routing without authentication

lyonrouge

1993 posts

Uber Geek
+1 received by user: 20

Trusted

Lifetime subscriber

#82205 24-Apr-2011 09:33

Hi guys. I'm a self taught home user with limited resources, hence trying to use FTMG to route requests on my single IP to different SSL servers on my domain. I've created a self-signed certificate (http://www.geekzone.co.nz/forums.asp?ForumId=45&TopicId=80185) but now I'm struggling with the Web Publishing / Listener configuration. I don't want FTMG to attempt to authenticate requests, I just want it to forward to the SSL servers (IIS7). I've verified access to these servers from within the domain. I've run the "test rule" on the web publishing rule and all comes up with green ticks, however, when I attempt to access from the outside, FTMG traps and denies the web publishing rule.

Regs

4066 posts

Uber Geek
+1 received by user: 206

Trusted

Snowflake

#462014 24-Apr-2011 20:00

have you configured both teh TMG server and the web server to trust the self signed certificate? have you run the logging tool in the TMG console to see more about which rule/reason it is blocked?

Sales Engineer
Snowflake
www.snowflake.com

about.me/nzregs
Twitter: @nzregs

lyonrouge

1993 posts

Uber Geek
+1 received by user: 20

Trusted

Lifetime subscriber

#462092 25-Apr-2011 10:01

Certificates (TMG, SharePoint & Exchange) are issued by trusted root CA. Rule test is TMG tests come back green. Request is denied with the following

HTTP Status Code : 12202 Forefront TMG denied the specified Uniform Resource Locator (URL).

URL is correctly correlated to SharePoint rule.