Internet Related/Filtering/Firewall Thread, Forefront TMG 2 proxy ports wit caching to 2 different up-stream servers staff/Stude in Technical; Just setting up FF TMG for the 1st time.. just want to know if i can have
2 proxy ports ...
4th July 2011, 03:24 PM #1
Forefront TMG 2 proxy ports wit caching to 2 different up-stream servers staff/Stude
Just setting up FF TMG for the 1st time.. just want to know if i can have
2 proxy ports with caching to 2 different up-stream servers Staff/Students
staff 8087 >>> Cache >>> upstream proxy (10.15.48.7:80)
Students 8080 >>>> Cache >>> upstream proxy (10.15.48.5:80)
can this be done if so how?
kinda new to FFTMG..
4th July 2011, 03:33 PM #2
No need for two different ports, just use different access rules that allow the staff group or the students group directly to that address over port 80 then set the machines to use the external proxy address. TMG will act as a transparent proxy and forward the request based on group membership.
The TMG does need to be a default gateway of either the client machines or of the router that handles the vlan switching for that method to work though.
Last edited by SYNACK; 4th July 2011 at 03:35 PM.
4th July 2011, 03:37 PM #3
where can i find info on this SYNACK..
4th July 2011, 03:48 PM #4
This has a bunch of screenshots, Forefront TMG 2010: How to install and configure Forefront TMG 2010 —-Step by step « Information Technology Blog its quite a big topic so you may need to ask questions on specific areas to get the information you are after quickly.
4th July 2011, 04:02 PM #5
4th July 2011, 04:35 PM #6
But can i have 2 external proxy address as the LEA provide 2 proxy's 1 for staff and 1 for students..
5th July 2011, 11:02 AM #7
You can have as many proxies as you want, the way my solution works is to configure the stations to point to the external proxy directly. This should be on a different network to the client and so the client will send the request to the default gateway (TMG). TMG should check the originator and choose the rule based on the group of the client username. This allow rule will allow and route the traffic to the internal to the LEA proxy directly.
As to proxy chaining with the proxy feature I have never dealt with doubled up proxies so I am not sure about configuring this.
29th July 2011, 02:39 PM #8
i give up with it TMG has to may problems.. i'll stick with Linux at least i can get it to do what i want..
29th July 2011, 02:42 PM #9
- same way I think just in reverse, it just depends on your skillsets.
Originally Posted by Cools
29th July 2011, 02:49 PM #10
I was going to get into TMG to replace our Linux firewalls but I've seen MS are discontinuing the product after this version (although it will still get patches etc)
Not sure if it's worth the pain of moving what works over to TMG and getting used to its methodology for a product that's on death row
By glennda in forum Enterprise Software
Last Post: 31st May 2011, 12:44 PM
Last Post: 5th May 2011, 03:31 PM
By jamesfed in forum Enterprise Software
Last Post: 31st January 2011, 09:59 AM
By sacrej in forum Windows Server 2008 R2
Last Post: 22nd November 2010, 11:23 AM
By HMCTech in forum Windows Server 2008
Last Post: 9th October 2009, 08:40 AM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)