Facebook.com not working through 1 node of TMG array

Facebook.com not working through 1 node of TMG array (Full Version)

All Forums >> [Threat Management Gateway (TMG) 2010] >> General

Message

cruachan -> Facebook.com not working through 1 node of TMG array (18.Jul.2012 8:45:12 AM)
Hey guys, long time reader of site/forum but first time poster. We have an odd issue where TMG EE is setup in a 2-node array, and everything is fine through one node but the other does not receive any replies from facebook.com (Marketing dept use it, I'd block it if it was up to me!) DNS resolves to the same IP on both, and pathping returns almost identical traces. 11 of the 13 hops are the same, and then different IPs are answering the request at the remote end. TMG logging shows request and response on the working node, request only on the non-working node. TMG Connectivity test comes back with "request timed out" but the browser does not, just gets the spinning circle in IE as if awaiting a response (Consistent with what logging shows) Tried clients as SecureNAT and Web Proxy, same results. Any thoughts, advice etc appreciated as this is a bit of a weird one.

dvizzle -> RE: Facebook.com not working through 1 node of TMG array (18.Jul.2012 9:15:49 AM)
Are they using different servers for DNS?

cruachan -> RE: Facebook.com not working through 1 node of TMG array (18.Jul.2012 9:58:03 AM)
No, both TMG nodes use the same 2 internal DNS servers for name resolution.

dvizzle -> RE: Facebook.com not working through 1 node of TMG array (18.Jul.2012 10:03:58 AM)
What does the TMG live logs show for each? Compare them. Are your rules synchronized across both nodes?

cruachan -> RE: Facebook.com not working through 1 node of TMG array (18.Jul.2012 10:08:50 AM)
I take it you mean live monitoring of traffic under Logs & Reports? That's what I was using where I can see the request sent but no reply received for the non-funtional node. Rules are synchronised, there is a (seperate) EMS Server which reports both nodes in sync and I've checked them manually as well.

cruachan -> RE: Facebook.com not working through 1 node of TMG array (27.Aug.2012 4:22:51 AM)
Sorted it in the end. Even though caching was turned off there was an old cache file on the affected node. Deleting it resolved the issue.

Page: [1]