GUys i have a TMG Box which has 3 NICs for LAN, Perimeter and External.
LAN IP Range: 172.16.14.0/24
Perimeter Range: Valid Range (First IP has been Set on TMG Perimeter Interface and Servers behind TMG with a Valid Public IP Address have Internet)
External Range: Other Valid Range ( Some Lan resources Published, Like Mail and Web Server)
currently we have an Apache Server in Perimeter Zone with a Public IP Address and Customers can Browse the Website. the problem is when i want to check for Customers IP Addresses Browsed this Web Server by HTTP I just see the Perimeter Address of TMG Box not Real Addresses. but if users try to browse the HTTPS Website in the same Apache Server i can determine which IP Source tried and browsed the WebSite. there seems to be a default rule that is trying to NAT the Traffic from External to Perimeter Network Range. how ever i'v configured TMG BOX using 3-Leg Template and Network Relationship between Perimtere and External Network is Route. i also tried to modify the Perimeter Network Rule to match like this:
From: Perimeter,External
To: Perimeter,External
Network Relationship: Route
-----------
but yet it's not working and i can only see the IP Address of Perimeter Interface in Apache Server for HTTP Traffics.
i also tried to unbind HTP Filter and defined a custom HTTP Protocol and separate Firewall ruled for that but nothing changed.
any help please?