cannot use TMG as a transparent proxy in different vlans
09-10-2012 09:37 AM
Recently I've set up a TMG to use as transparent proxy for my guest WIFI. We have two aruba controllers in 2 different sites both configured as masters with different vlans. The TMG is connected on the same core switch as one of the 2 controllers.
I am having some problems setting up my guest client to use the TMG as a transparent proxy in the second site.
Aruba B -----> Core B ------> Core A --------> Aruba A & TMG
The site-A users get the TMG as their default gateway and by applying the
policy on the guest role they have internet access.
The site-B users:
- cannot get the TMG as their default gateway because we have different vlans on the switches
- if they get Core B as their default gateway, they reach the point where they authenticate(secure login) and then nothing….. I gathered that I need to amend the internet policy(applied on the guest role) so that the guest traffic would be redirect to the TMG.
Something like the screen shot below:
the TMG has 172.31.199.10 as IP address
|user||any||svc-http||dst-nat ip 172.31.199.10|
Any ideas how I need to change this rule?