Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1880
Views
0
Helpful
1
Replies

forward L2TP/IPsec requests to ForeFront TMG server

dick
Level 1
Level 1

‎03-04-2012 03:42 PM - edited ‎02-21-2020 05:55 PM

I have added an ASA 5510 to my network between the Internet and a Windows 2008R2 server running ForeFront TMG. Before the ASA was added, vpn clients using Microsoft Windows 7 vpn client using L2TP/IPsec connected to our vpn. After ASA was added, clients can no longer connect. I would like to know how to configure the ASA to forward the vpn requests to the ForeFront TMG server for authentication and access to internal network resources. Mail is forwarded appropriately through the ASA to internal mail server and Internet access for LAN users works just fine.

Topology:

Internet..............ASA 5510 (outside interface is ISP IP address, inside interface is 192.168.1.1)................Forefront TMG (outside nic 192.168.1.2, inside nic is LAN gateway IP address).

I have altered the registry key of the client vpn pc's per Microsoft Technet: http://support.microsoft.com/kb/926179/en-us

Thank you in advance for your assistance.

Labels:
0 Helpful
1 Reply 1

dick
Level 1
Level 1

‎03-05-2012 09:12 PM

enable forwarding of ports up/500 and ISP/4500. Turn off VPN authentication on asa5510 and presto!! It works.

Sent from Cisco Technical Support iPad App

0 Helpful
Customers Also Viewed These Support Documents