Question : VIEWING INTERNAL WEB SITES WITH FOREFRONT TMG CLIENT

I'm running a Forefront TMG Standard Edition server in 3-leg Perimeter mode.  My perimeter is a public DMZ however that probably doesn't matter much here.

My issue is simple.  I have Forefront TMG Clients on my internal network which is a simple 192.168..0.0/24 network and on this network I have about 10 web sites listening on port 80 with assigned IP addresses on this network.  These sites all work fine from the Internet via web publishing rules, etc. and are easily accessible with my 2 SecureNAT clients on the network.

I have found the areas to define Forefront TMG Client settings in the Networking section and I've made changes to the Internal network to allow bypassing the proxy for the internal address range and even wildcarded the domain suffixes as well but I still cannot access and the log on the TMG server is indicating a block via the default rule (which is at the bottom of course of the Firewall policy) and these errors in the logs are preceded by the successful web proxy settings.

What am I missing to make sure the internal sites are unrestricted for Firewall client connections?

Thanks,

Dave

Answer : VIEWING INTERNAL WEB SITES WITH FOREFRONT TMG CLIENT

In the gui, select networking - internal, edit this object and select domains. You can add domains that are to be ignored by the FTMG clients.