Strange behavior from TMG 2010

Hi all,

I have a strange issue in accessing internet behind TMG 2010 from random users. Sometimes internet works fine and sometimes not. I have checked the monitor section and I found this alert "Global denied packets rate limit: The number of denied TCP and non-TCP packets per second exceeded the system limit. As a result, Forefront TMG reduced the number of records of denied packets that are written in the log."

I did the following:

  1. Increase the number of TCP and non-TCP requests in Flood Mitigation Settings.
  2. Add the range of my subnet in the exception section to allow all users.
  3. Disable Mitigation flood attacks and worm propagation.

And the warning still exist and it is not directed to certain host.

Thanks in advance.

March 24th, 2015 7:29am

Hi,

>>Sometimes internet works fine and sometimes not

Is there any error in TMG logging when the internet not work?

Please try to increase the number of denied packets by Specify how many denied packets trigger an alert in flood mitigation settings.

Best Regards,

Free Windows Admin Tool Kit Click here and download it now
March 25th, 2015 1:57am

Hi,

I did not see anything in the logs. What type of logs you asking for?

Kind Regards,

Ahmed

March 26th, 2015 4:27am

Hi Joyce,

Thanks for your reply.

I have already raised the limit to 6000000 and 10000000 (IP Exceptions). Also, I have disabled the Mitigation flood attacks and worm propagation completely but the error still there.

Free Windows Admin Tool Kit Click here and download it now
March 26th, 2015 10:54am

Hi,

Anything weird in TMG logs?

Best Regards,

Joyce

March 26th, 2015 10:17pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics