I've seen this issue has been logged a few times in the past, but none of the tips mentioned have resolved my issue, so I'm posting a new thread.

Basically we have a problem where any of our staff who are connected remotely as a VPN client to our network are limited to around 1.5-2Mbps upload or download from our head office to their home. Whereas our internet connection is capable of just over 5Mbps up/down. So if a remote user connects to the VPN, then maps a network drive to one of the servers in our head office and copies a large file down to their laptop/PC, the maximum file copy speed is only about 1.5-2Mbps.

This speed limit only seems to be restricted to VPN Clients accessing via the Forefront TMG server. For example if the same remote user disconnects from the VPN, then downloads a file from our head office via our FTP site (which uses the same network connection, just a different protocol and therefore different Firewall Policy rule), they achieve the maximum expected bandwidth speeds of around 5Mbps up/down. Same goes for HTTP traffic from within the head office downloading via Forefront TMG. Speedtest.net shows the expected 5Mbps for internet traffic through the firewall.

Any suggestions or ideas as to why this is the case? Here's some info about our configuration.

Forefront TMG 2010 server v7.0.9193.575 (SP2, Rollup 3) running on Windows Server 2008 R2 enterprise SP1 (as a VM).

Forefront TMG Server VM hosted on Windows Server 2012 R2 with internal/external NIC's allocated to the TMG VM.

Network Load Balancing disabled.

Malware Inspection disabled

Hello

tip:

check registry settings:
https://support.microsoft.com/en-us/kb/2452980

Thanks for the link. I'm a bit confused by that though. The information in the link says the issue is resolved in 'Software Update 1 rollup 2 for Forefront Threat Management Gateway (TMG) 2010 Service Pack 1'. Whereas I'm already running SP2, Rollup 3, so I'd assume I already have this fix?

But when I look at the registry on my TMG server, I don't see any of the subkeys or values it's referring to??

Don't pin me on it, but what you see could be an AS IS.

Depening on your type of internet connection their could be a reason for it. Suppose you are using an ADSL connection, which is asymetric, this is what happens:

• Your VPN Clients connect to the VPN Gateway (TMG Servers)
• The VPN Gateway (TMG Server) gets the load from internet.
• At the same time the VPN Client gets the load from the VPN Gateway (TMG Server)

Bot traffic workloads go over the same internet connection at the same time. Some may say, one is upload and the other download. That would be correct with full duplex Ethernet. But not with every type of internet connection, like ADSL. I have seen this for, and it does make a difference.

Other factors could be Malware/URL filtering enabled for VPN Clients and from internal clients. Another reason could be having a TMG Array with CARP enabled, whereas VPN Clients connect to TMG Array-member 1, but page is cached on TMG Array-member 2.