+ Post New Thread
Results 1 to 6 of 6
Internet Related/Filtering/Firewall Thread, TMG filtering access to Webex and GoToAssist services in Technical; We have our own non-RBC Internet connection, and use a Forefront TMG box with the web protection service (amongst other ...
  1. #1

    Join Date
    Dec 2007
    Location
    Derbyshire. Ish.
    Posts
    270
    Thank Post
    30
    Thanked 23 Times in 16 Posts
    Rep Power
    25

    TMG filtering access to Webex and GoToAssist services

    We have our own non-RBC Internet connection, and use a Forefront TMG box with the web protection service (amongst other bits) for filtering and logging of outbound Internet requests.

    We also rely on support contracts with Capita (for SIMS) and PS Financials (for our finance software) that use the likes of Webex and GoToAssist remote-control services when support agents need to provide assistance.

    None of them can be got to work - despite the access rules on the TMG box allowing the use of traffic on ports 80 and 443. I've even defined specific port allowances (such as 8200) as listed on manufacturors websites, but nothing I do seems to make any difference.

    I suspect TMG's packet inspection mechanism might be getting in the way but TMG isn't really logging anything about the client's attempts to initiate a remote support session, beyond the occasional "connection reset by peer" error code in the web proxy log (10054). And although that's a start, it's not much help!

    Does anyone have suggestions as to where the problem might be? Or even have a similar TMG setup, using similar remote software successfully, and wouldn't mind talking through their configuration - via PM or on the phone if you feel more comfortable - so I can sanity-check my own?

    Thanks in advance!

  2. #2
    grant_girdwood's Avatar
    Join Date
    Jun 2012
    Location
    Bloxx HQ
    Posts
    56
    Thank Post
    3
    Thanked 11 Times in 10 Posts
    Rep Power
    7
    You'll need to allow the CIDR notations that they use.

    http://www.citrixonline.com/iprange

  3. #3

    Join Date
    Dec 2007
    Location
    Derbyshire. Ish.
    Posts
    270
    Thank Post
    30
    Thanked 23 Times in 16 Posts
    Rep Power
    25
    Thanks - had already tried that but it hadn't made any difference.

    The solution in the end was related to the packet inspection TMG performs - for some reason it really didn't like access to the servers that host GoToAssist. Defining the domain names as exclusions in the malware and HTTPS inspection services sorted the issue with GoToAssist.

    Not yet sure about Webex as Capita won't even attempt a test connection unless we have a call outstanding that warrants remote support - but I imagine it is the same issue causing it so, hopefully, the same fix.

  4. #4

    ZeroHour's Avatar
    Join Date
    Dec 2005
    Location
    Edinburgh, Scotland
    Posts
    5,837
    Thank Post
    974
    Thanked 1,405 Times in 850 Posts
    Blog Entries
    1
    Rep Power
    460
    Have you installed the TMG firewall client on the box?
    It will allow you to get around any possibly authentication problems and it should be on the TMG server (to install from, not installed on) as a share I think.
    Last edited by ZeroHour; 28th September 2012 at 03:48 PM.

  5. #5

    Join Date
    Dec 2007
    Location
    Derbyshire. Ish.
    Posts
    270
    Thank Post
    30
    Thanked 23 Times in 16 Posts
    Rep Power
    25
    I haven't - don't use the TMG client at all to be honest and due to workload I don't have the time to evaluate using it either

    The malware and HTTPS inspection rule exceptions seem to have sorted it for the moment, but thanks for the suggestion.

  6. #6

    ZeroHour's Avatar
    Join Date
    Dec 2005
    Location
    Edinburgh, Scotland
    Posts
    5,837
    Thank Post
    974
    Thanked 1,405 Times in 850 Posts
    Blog Entries
    1
    Rep Power
    460

    RE: TMG filtering access to Webex and GoToAssist services

    Its an msi at least but certainly if you have any more issues its worth a try especially with older apps.



SHARE:
+ Post New Thread

Similar Threads

  1. Denied Access to Playback and Recording Devices
    By vehmeier in forum Windows Vista
    Replies: 2
    Last Post: 9th March 2010, 02:56 PM
  2. Giving Administrators and Staff access to Student Home Drives
    By madman070578 in forum Windows Server 2000/2003
    Replies: 6
    Last Post: 22nd October 2009, 08:51 PM
  3. Staff laptops and access to the C Drive.
    By Jake in forum How do you do....it?
    Replies: 21
    Last Post: 20th March 2007, 03:44 PM
  4. Replies: 8
    Last Post: 28th June 2006, 10:06 AM
  5. Access to subscription services
    By Philbert in forum Educational Software
    Replies: 4
    Last Post: 23rd March 2006, 01:41 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •