Tmg malware inspection not updating conduct invalidating

: Ethernet adapter DMZ Team: Connection-specific DNS Suffix .

: Enabled Ethernet adapter Internal Team: Connection-specific DNS Suffix .

It uses the sytem policy rule: [System] Allow all HTTP traffic from Forefront TMG to all networks (for CRL downloads) source: local, dest: external Check if that rule works.

Else you can LOG your traffic checking for localhost connection using HTTP.

to be frank, I don't know if there are seperated lic's.

(have to check) Sounds like your local host just isn't allowed to browse to the update sites.

This error may have occurred because no connection exists between the server XXXXX and a Microsoft Update server.

Verify that the server XXXXX can connect to the Microsoft Update servers.

I've also set the proxy using, "netsh winhttp set proxy", using the netbios and FQDN of the proxy. Here's one of the events that may have something to do with it: ----------------- Failed Connection Attempt Log type: Web Proxy (Forward) Status: 10060 A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond.

Rule: [System] Allow HTTP/HTTPS requests from Forefront TMG to specified sites Source: Local Host (127.0.0.309) Destination: External (.13) Request: 10mrs.microsoft.com:443 Filter information: Req ID: 100caf94; Compression: client=No, server=No, compress rate=0% decompress rate=0% Protocol: SSL-tunnel User: anonymous Additional information Object source: Internet (Source is the Internet.

Object was added to the cache.) Cache info: 0x0 Processing time: 0 MIME type: ----------------- Thanks, Matt Shutting off the services stops everything.

Tags: , ,