• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

DP Inbound

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [Threat Management Gateway (TMG) 2010] >> General >> DP Inbound Page: [1]
Login
Message << Older Topic   Newer Topic >>
DP Inbound - 19.May2011 6:56:05 AM   
nonamenone

 

Posts: 12
Joined: 17.Apr.2007
Status: offline
Hi

We are having problems with using RDP inbound to our terminal servers, although we can RDP to the TMG server fine.

In the event log we get the error:

21174

The server publishing rule RULENAME failed because there was no valid network listener. For requests to reach the published server there must be a network relationship between the selected listener networks and the published server. Error location: 325.958.7.0.9027.400.

NIC1 - Internal IP range is: 192.168.0.x
NIC2 - Public IP range: 78.86.x.x (5 IP's)

All other inbound publishing rules SMTP, OWA etc work fine

TMG is running SP1

Any help appreicated

Thanks

Mark
Post #: 1
RE: DP Inbound - 20.May2011 10:57:47 AM   
paulo.oliveira

 

Posts: 3471
Joined: 3.Jan.2008
From: Amazon, Brazil
Status: offline
Hi,

before TMG evaluate the access rules, it first evaluate if there´s a link between the networks involved in the connection. If you have added a new interface to TMG, then you should also create a network relationship between this new TMG Network and the others networks.

Regards,
Paulo Oliveira.

_____________________________

Microsoft MVP - Forefront
MCP - ISA Firewall 2004
Blog: http://poliveirasilva.wordpress.com/
Twitter: https://twitter.com/poliveirasilva

(in reply to nonamenone)
Post #: 2
RE: DP Inbound - 20.May2011 11:08:31 AM   
nonamenone

 

Posts: 12
Joined: 17.Apr.2007
Status: offline
Hi Paulo

Many thanks for your reply.

In ISA 2006 it was not necessary to add anything when the multiple public IP's were all on the same network card.

If possible, could you give me an example of what\where I need to implement this relationship based upon my IP's.

Thanks again

Mark

(in reply to paulo.oliveira)
Post #: 3
RE: DP Inbound - 20.May2011 5:05:11 PM   
paulo.oliveira

 

Posts: 3471
Joined: 3.Jan.2008
From: Amazon, Brazil
Status: offline
Hi,

I guess I missunderstood you. But the errors you´ve posted says: "The server publishing rule RULENAME failed because there was no valid network listener. For requests to reach the published server there must be a network relationship between the selected listener networks and the published server. Error location: 325.958.7.0.9027.400."

That´s why I think it is related to network rule. The access rule evaluating process is the same for ISA2004/2006 and TMG.

http://www.isaserver.org/articles/ISA2004_AccessRules.html

Regards,
Paulo Oliveira.

_____________________________

Microsoft MVP - Forefront
MCP - ISA Firewall 2004
Blog: http://poliveirasilva.wordpress.com/
Twitter: https://twitter.com/poliveirasilva

(in reply to nonamenone)
Post #: 4

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [Threat Management Gateway (TMG) 2010] >> General >> DP Inbound Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts