Hi Guys,I have an strange Issue where TMG 2010 Latest Updates Installed as a 3-Leg Firewall. Everything is working good except many attacks i have on my DMZ Public IP Range. TMG DMZ range consist of a /26 Valid Range and is accessible from internet by Route Relationship. I just tested these Valid IP Addresses from Internet and every port from 1-65535 is open to internet. however because the other Party (a Host in DMZ) don't answer to the Port telnet TMG Logs showing a Connection RST. but this is making our Edge Firewall a suitable Host for Attacks since attackers or bots can see all ports are open and answering on fist try...is this okay? isn't this a problem with TMG DMZ Range...
if i remove All Protocol Access from External to DMZ problems going away and only ports that are really open on DMZ Hosts get a successfull telnet....how can i fix this issue ?