I am implementing 2 TMGs in a standalone array. I am having some NLB issues that have been discussed in other posts (RPC errors in NLB manager and connections failing afer adding second TMG). It appears KB980674 is designed to address some NLB intergration issues, even beyond VPN (which I am not using).
Since I just got started with testing these, I am going to remove and re-install TMG. Should I apply this before or after installling TMG, or does it not matter?
Jason, I have a couple more quick questions. 1. Should I configure the intra-array network on TMG01 before I install TMG on TMG02 and attempt to join it to the array? I want the intra-arrya communication to use the private network between TMGs. I am following your blog article on the how to. 2. I see a warning when enabling NLB that if a network is not truly "external" NLB should not be enabled. My ISA 2006 array is doing this on the DMZ interface behind a border firewall. Can I also do this with the TMG? The interface into which come connections from the Internet is on my DMZ, but needs to use NLB. Again, this works fine on my ISA 2006 array and I wish to do the same on the TMG array.
From: United Kingdom
A1: I think you can do it either way around, but doing the array join first, then creating the intra-array network now seems a bit more logical. You can then define the intra-array IP addresses for each node, from the array manager.
A2: Not quite sure what error you mean, but yep, NLB is fine on an external interface that is not actually directly Internet connected.