Announcement

Collapse
No announcement yet.

Problem with TMG 2010 and weird routing

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Problem with TMG 2010 and weird routing

    I have two physical machines with Windows 2008 R2 Datacenter as Hyper V Host. Each of those machines have 5 NIC's with only 2 NIC's connected.

    I've installed on both of those Hyper-V Guest Machines TMG with 2010 SP1 CU2. I've joined them into Array but now for the sake of resolving my issue I've disconnected one TMG and shutdown TMG2.

    The rules on TMG are default (deny everything).

    Ip configuration of TMG:
    Ethernet adapter WAN-TPSA:

    Connection-specific DNS Suffix . :
    IPv4 Address. . . . . . . . . . . : 10.10.0.101
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    IPv4 Address. . . . . . . . . . . : 10.10.0.100
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . : 10.10.0.1

    Ethernet adapter LAN-USERS:

    Connection-specific DNS Suffix . :
    IPv4 Address. . . . . . . . . . . : 192.168.1.70
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . :



    Ip configuration of my Windows 7:
    Ethernet adapter Local Area Connection:

    Connection-specific DNS Suffix . :
    IPv4 Address. . . . . . . . . . . : 192.168.1.74
    Subnet Mask . . . . . . . . . . . : 255.255.255.0
    Default Gateway . . . . . . . . . : 192.168.1.70


    I have in network working router 192.168.1.1 (Draytek) and people now go outside with it. I've set up TMG in the network to do some testing for replacement of that Draytek. As visible my GW is 1.70.. however

    Tracing route to onet.pl [213.180.146.27]
    over a maximum of 30 hops:
    0 192.168.1.74
    1 192.168.1.1
    2 89.171.XX.XX
    3 213.134.136.5
    4 213.134.136.130
    5 193.111.36.73
    6 194.153.134.249
    7 194.153.134.202
    8 213.180.151.18
    9 213.180.151.65
    10 213.180.146.27

    As visible in this trace routing for some reason goes thru .1.1

    Funny thing is i can notice in TMG in logs that some traffic hits the tmg and is denied (like saying PING denied, www denied etc) but for some reason everything on my Windows 7 still works....


    C:\Users\Administrator>route print
    ================================================== =========================
    Interface List
    12...00 24 d6 69 31 94 ......Intel(R) WiFi Link 5100 AGN
    11...00 24 e8 f5 85 ed ......Intel(R) 82567LM Gigabit Network Connection
    1...........................Software Loopback Interface 1
    ================================================== =========================

    IPv4 Route Table
    ================================================== =========================
    Active Routes:
    Network Destination Netmask Gateway Interface Metric
    0.0.0.0 0.0.0.0 192.168.1.70 192.168.1.74 266
    127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
    127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
    127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
    192.168.1.0 255.255.255.0 On-link 192.168.1.74 266
    192.168.1.74 255.255.255.255 On-link 192.168.1.74 266
    192.168.1.255 255.255.255.255 On-link 192.168.1.74 266
    224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
    224.0.0.0 240.0.0.0 On-link 192.168.1.74 266
    255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
    255.255.255.255 255.255.255.255 On-link 192.168.1.74 266
    ================================================== =========================
    Persistent Routes:
    Network Address Netmask Gateway Address Metric
    0.0.0.0 0.0.0.0 192.168.1.70 Default
    ================================================== =========================

    IPv6 Route Table
    ================================================== =========================
    Active Routes:
    If Metric Network Destination Gateway
    1 306 ::1/128 On-link
    1 306 ff00::/8 On-link
    ================================================== =========================
    Persistent Routes:
    None


    So my question is what's wrong Since TMG is configured to not put thru anything it shouldn't work but it works... clearly some way it just goes the wrong ways..
    My website with some small projects - http://www.pro-solutions.pl

  • #2
    Re: Problem with TMG 2010 and weird routing

    Can you post a route print and a full ipconfig /all from the TMG server?

    What's the NIC config on the Hyper-V hosts? Are the TMG server's WAN ports isolated from the host operating system?
    BSc, MCSA: Server 2008, MCSE, MCSA: Messaging, MCTS
    sigpic
    Cruachan's Blog

    Comment

    Working...
    X