• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

TMG blocking File Access

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [Forefront Unified Access Gateway 2010] >> General >> TMG blocking File Access Page: [1]
Login
Message << Older Topic   Newer Topic >>
TMG blocking File Access - 29.Sep.2010 5:35:12 PM   
fusky

 

Posts: 5
Joined: 29.Sep.2010
Status: offline 		When I go to configure the File Access in UAG, I get an error of "Failed to enumerate domains." During some troubleshooting, I noticed when I disable the TMG Firewall service, I can then access the domains under the FileAccess Admin.

I checked the TMG logs and I'm seeing a lot of messages saying "FWX_E_BROADCAST_PACKET_DROPPED" as well as "Default rule - FWX_E_POLICY_RULES_DENIED".

I do have a publishing rule that is enabled and at the top (which I assume is created automatically) of "PublishingRule::NetBiosNameService" and the description states it's for "File Access".

Am I missing something?

I am very new to UAG/TMG.

Thanks.
Post #: 1
RE: TMG blocking File Access - 29.Sep.2010 6:25:19 PM   
Jason Jones

 

Posts: 4663
Joined: 30.Jul.2002
From: United Kingdom
Status: offline 		Have you installed UAG Update 2?

Cheers

JJ

_____________________________

Jason Jones | Forefront MVP | Silversands Ltd
My Blogs: http://blog.msedge.org.uk/ and http://blog.msfirewall.org.uk/

(in reply to fusky)
Post #: 2
RE: TMG blocking File Access - 30.Sep.2010 9:33:40 AM   
fusky

 

Posts: 5
Joined: 29.Sep.2010
Status: offline 		Yep. Also, I can browse shares manually by \\machinename\share.

Another note, I added a rule in TMG to allow all protocols from internal and local host to internal and local host. It's almost as if TMG isn't applying these rules.

< Message edited by fusky -- 30.Sep.2010 9:50:37 AM >

(in reply to Jason Jones)
Post #: 3
RE: TMG blocking File Access - 30.Sep.2010 10:54:07 AM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline 		Hi Fusky,

If you're using UAG, you should never (well, almost never) go into the TMG console. For File Access, there are no rules you need to create. Make sure the UAG server is a domain member.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to fusky)
Post #: 4
RE: TMG blocking File Access - 30.Sep.2010 11:25:39 AM   
fusky

 

Posts: 5
Joined: 29.Sep.2010
Status: offline 		That's exactly what I thought. The server is a member of the domain. It's just weird that when I stop the TMG Firewall service, I can go into the File Access and see the domain listed. But when the TMG Firewall service is enabled, I get the enumeration error. 

(in reply to tshinder)
Post #: 5
RE: TMG blocking File Access - 13.Oct.2010 3:22:55 AM   
c3dr1c6666

 

Posts: 3
Joined: 13.Oct.2010
Status: offline 		Hi,

I have the same problem with UAG and file access.
If I stop TMG, I can browse the domains and teh file servers, but when I start it, all the netbios traffic is dropped.

Did you find a solution to that problem ?

Thanks,

Cedric

(in reply to fusky)
Post #: 6
RE: TMG blocking File Access - 13.Oct.2010 6:24:48 AM   
hitchb

 

Posts: 3
Joined: 8.Oct.2010
Status: offline 		have you followed the steps in the following guide

http://myitforum.com/cs2/blogs/forefrontsecurity/

otherwise did you setup your local network card as an internat NIC in the UAG network Wizard ?

(in reply to c3dr1c6666)
Post #: 7
RE: TMG blocking File Access - 13.Oct.2010 7:03:24 AM   
c3dr1c6666

 

Posts: 3
Joined: 13.Oct.2010
Status: offline 		Yes I followed these steps. But when TMG is running I cannot browse the network. However, if I stop it, all the servers appear and I able to browse the domain. I have exactly the same problem than fusky.

The UAG internal network card is in a different subnet than the other servers.

(in reply to hitchb)
Post #: 8
RE: TMG blocking File Access - 13.Oct.2010 7:25:31 AM   
hitchb

 

Posts: 3
Joined: 8.Oct.2010
Status: offline 		alright to then to add the networks you are trying to access in the TMG LAT.

otherwise it will consider them as outside networks and filter access

hope this helps

Hicham

(in reply to c3dr1c6666)
Post #: 9
RE: TMG blocking File Access - 13.Oct.2010 7:29:49 AM   
c3dr1c6666

 

Posts: 3
Joined: 13.Oct.2010
Status: offline 		I think that I've already added the file server subnet in the internal network in TMG.

But I will have to look to be sure.

Thanks.

(in reply to hitchb)
Post #: 10
RE: TMG blocking File Access - 30.Oct.2015 4:06:33 AM   
maoli205

 

Posts: 3
Joined: 30.Oct.2015
Status: offline 		Thanks so much for your sharing coque galaxy j1 etuicoquesamsung

< Message edited by maoli205 -- 3.Nov.2015 12:31:38 AM >
Post #: 11

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [Forefront Unified Access Gateway 2010] >> General >> TMG blocking File Access Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts