Posts: 105
Joined: 1.Aug.2003
From: The Netherlands
Status: offline
I've just installed TMG 2010 RTM on a Windows 2008 R2 server. When I use the "Automatically Detect Settings" in IE it can't find the TMG. When checking autodiscovery with "fwctool.exe testautodiscover" it doesn't report problems. Also the TMG client autodiscovery works without problems. Setting the proxy settings in IE manually does work too. Entering the url "http://wpad/wpad.dat" in IE results in downloading the wpad.dat file. However, as soon as I use "Automatically Detect Settings" in IE it fails. Can someone help me how to resolve this issue?
Posts: 477
Joined: 20.Jan.2009
From: Southern California
Status: offline
Correct...that should definitely be the IP address of the Internal network interface of your TMG firewall. You have enabled the web proxy listener on the Internal network, correct?
Denied Connection TMG 11/21/2009 8:11:18 AM Log type: Firewall service Status: A packet generated on the local host was rejected because its source IP address is assigned to one network adapter and its destination IP address is reachable through another network adapter. Rule: None - see Result Code Source: Local Host (x.x.x.208:21411) Destination: Internal (x.x.x.11:389) Protocol: LDAP Additional information Number of bytes sent: 0 Number of bytes received: 0 Processing time: 0ms Original Client IP: x.x.x.208
Denied Connection TMG 11/21/2009 8:12:00 AM Log type: Firewall service Status: The action cannot be performed because the session is not authenticated. Rule: Allow Web Access for All Users Source: Internal (x.x.x.51:51605) Destination: External (213.199.164.110:80) Protocol: HTTP Additional information Number of bytes sent: 0 Number of bytes received: 0 Processing time: 0ms Original Client IP: x.x.x.51
< Message edited by dmutsaers -- 21.Nov.2009 2:36:24 AM >
Posts: 105
Joined: 1.Aug.2003
From: The Netherlands
Status: offline
Yes, I've configured the network interfaces as described in the article. However, I configure dns on all network interfaces (pointing to the internal interface). This is a recommendation from ISA Best Practice Analyzer.
Posts: 4663
Joined: 30.Jul.2002
From: United Kingdom
Status: offline
quote:
ORIGINAL: dmutsaers
Yes, I've configured the network interfaces as described in the article. However, I configure dns on all network interfaces (pointing to the internal interface). This is a recommendation from ISA Best Practice Analyzer. [/quote
Nope, the BPA is bit dumb in this respect
You should only have DNS configured on the internal interface.
Posts: 105
Joined: 1.Aug.2003
From: The Netherlands
Status: offline
Well, all has been configured as supposed to, but IE configured with "Automatically Detect Settings" directs proxy requests to the RRAS adapter, not the Internal adapter.
< Message edited by dmutsaers -- 24.Nov.2009 4:37:03 AM >
You can try to contact Microsoft's support to see what they say about this. If it's a bug, they should not charge you. And temporarily to use an workaround, either with the static address pool or place Wpad.dat (and Wspad.dat) on another server. http://technet.microsoft.com/en-us/library/cc995261.aspx
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [Threat Management Gateway (TMG) 2010] >> General >> "Automatically Detect Settings" in IE doesn't work. 
"Automatically Detect Settings" in IE doesn't... - 
RE: "Automatically Detect Settings" in IE doe... - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread