• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

TMG Network Rules

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [Threat Management Gateway (TMG) 2010] >> General >> TMG Network Rules Page: [1]
Login
Message << Older Topic   Newer Topic >>
TMG Network Rules - 21.May2012 9:27:02 PM   
gforce007

 

Posts: 2
Joined: 21.May2012
Status: offline
Hi,

i'm kind of new to TMG/ISA and i'm wondering, when i add a new network rule, and the source is a pc or network, the destination is external, and the relation is route, why tmg doesn't route traffic on port 80 or 443 it nat's it?

thanks
Post #: 1
RE: TMG Network Rules - 22.May2012 5:56:16 PM   
royh

 

Posts: 318
Joined: 23.Feb.2007
From: Lebanon
Status: offline
Internal private IPs can't be routed to the internet! You have to use a NAT between your internal and external network.Thanks -

_____________________________

Roy Haddad,M.Sc
CCNA, MCSE 2003 Messaging & Security,C|EH
www.foxminds.com

(in reply to gforce007)
Post #: 2
RE: TMG Network Rules - 22.May2012 6:14:52 PM   
gforce007

 

Posts: 2
Joined: 21.May2012
Status: offline
Thanks royh,

I should have mentioned that we have a checkpoint firewall between the tmg and the internet. we have a small department connected to one of the legs of tmg for internet usage reporting and i have setup a network rule to route traffic from this network zone to external. but when we monitor the checkpoint logs, we can see the computer ip address when they try anything other than 80 or 443. when they try 80 or 443, we see the tmg requesting the traffic.

Thanks

(in reply to royh)
Post #: 3
RE: TMG Network Rules - 23.May2012 6:34:02 PM   
royh

 

Posts: 318
Joined: 23.Feb.2007
From: Lebanon
Status: offline
Are you sure http/https are allowed thru checkpoint?

_____________________________

Roy Haddad,M.Sc
CCNA, MCSE 2003 Messaging & Security,C|EH
www.foxminds.com

(in reply to gforce007)
Post #: 4

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [Threat Management Gateway (TMG) 2010] >> General >> TMG Network Rules Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts