Forefront TMG is Stop Internet after few min after enabling HTTPS Inspection

Question

Forefront TMG is Stop Internet after few min after enabling HTTPS Inspection, specialty I am enable to block other https websites but gmail is not blocking till i enable https inspection & if i enable https inspection internet will stop working after few min, FFTMG 2010 server not hung, its still response but there is no internet till restart the machine. if i disable https inspection then internet will work fine & services running till couple of days without any issue but gmail blocking in deny rule but still opening. I block it with several way https://accounts.google.com/* .accounts.google.com https://www.gmail.com/

Kindly Help.

Please make your post readable by breaking the text into paragraphs and doing a spell/grammar check. — Deer Hunter, Jul 22 '13 at 08:27

score 0 · Answer 1 · answered Jul 22 '13 at 08:22

This is a very common problem with TMG, not be design, but by the implementation you decided to use, you need to make sure that you understand the HTTPS inspection before you actually enable it.

I found out that SecureNAT clients does not work with HTTPS inspection, you will either need to enable the WebProxy clients or install the TMG Client on your client computers to make it work, still some sites will break and stop working after doing so since the inspection will replace the original certificate for the sites your clients are visiting with another one from the TMG server it self.

For more information, take a read here: http://blogs.technet.com/b/isablog/archive/2009/10/19/common-problems-while-implementing-https-inspection-on-forefront-tmg-2010-rc.aspx

Forefront TMG is Stop Internet after few min after enabling HTTPS Inspection

1 Answers1