A newbie question, so the forfront is configured on my server, an my internet wireless router is plugged to one of the nic ports, where do i go from here? do i need to plug another wireless router set as an AP with same ssid to another nic?
Configre one NIC to be the internet (External) side of TMG and connect to a router, turn off the DHCP and wireless on this router and connect it to your ISP.
Configure the other NIC as internal, and connect the other router (this will be little more than a wireless access point now) configure rules in TMG to allow your traffic through, remember like most firewalls TMG processes rules from the top down so be mindful on your rule ordering.
Clients will then either be SecureNAT clients (use the TMG internal IP as their default gateway) or Web Proxy Clients (add the TMG internal IP to the clients proxy settings).
Guys one more thing, when i connect the cisco AP to the server ,and i connect myself to the AP and i try to ping the server, it tells me destination host unreachable, although i have the firewall off, and i executed this command " netsh firewall set icmpsetting 8 disable" and still nothing.
December 21, 2012 1:30:05 PM
The above diagram will work for Web Proxy clients, but users will be able to bypass the TMG server simply by unchecking the proxy settings, ideally the TMG box should have 2 NICs to stop this.