Troubleshooting Exchange

Exchange Log

Post navigation

← /Preparedomain error when security customizations have been done to Active Directory

Retention Policy on Calendar Items in Exchange 2010 →

TMG NLB and F5 Publishing Problems

Posted by Jedi Hammond

Environment:

TMG array –> F5 Load Balancer –> Published service

Problem:

When traffic comes in through TMG to F5, F5 doesn’t respond correctly to the load balanced request and then TMG doesn’t see any response.

Reason:

F5 extracts the MAC address from the Ethernet header instead of arp requests
MS NLB uses MAC address spoofing to prevent switch port flooding in unicast NLB. NLB will mask the MAC address of a host with the NLB cluster host number and assign to each node in the cluster.
Since F5 doesn’t use arp requests, the NLB driver isn’t used to properly assign the correct MAC address to the sending host via the arp request.

Solution:

Set MaskSourceMAC registry value to 0 on the adapters on both TMG servers that are in the NLB array sending to F5. http://support.microsoft.com/?id=193602
Put a Hub between the F5 and the TMG array to prevent switch port flooding.

Share this:

Email
Twitter
Facebook
Reddit
LinkedIn
Tumblr
Print

Like Loading...

Related

Posted in TMG

Tagged F5, NLB, TMG, Web Publishing

Leave a comment Cancel reply

Δ

Post navigation

← /Preparedomain error when security customizations have been done to Active Directory

Retention Policy on Calendar Items in Exchange 2010 →

Translate this site

Blogroll

Active Directory Troubleshooting Blog
Brent Caskey's Blog
Brian Reid's Blog
Glenn Wallace's Blog
John Dixon's Blog
Leonardo Marchese Blog
Louis Reeves Lync-UM Blog
Mike Lagase
Mike Pfeiffer
Mike Wilson's VMware Blog
MS Exchange Blog
Sean Crawford's Blog
Technical Rollup
The Master Blog
Tim McMichael
Yuri's ISA TMG Blog

Quick Links

About The Authors
Publish Ex2010\TMG
Top Exchange Issues

Search

Search

Active Directory ActiveSync Address Policy AD Topology Arbitration Autodiscover backup Calendar CCR Certificate certificate authority CRL CU1 DAG Database Availability Group Disaster Recovery DNS Domain Controller EAC ECP Edge Transport EMC ems error ESEUTIL Exchange Exchange 2003 Exchange 2007 Exchange 2010 Exchange 2013 Exchange Recovery Hyper-v IIS ISA isinteg Mail Flow MEC Migration missing MoveRequest Network OAB Office 365 Offline Address Book OOF Outlook Outlook 2003 outlook 2013 Outlook Anywhere out of office OWA pop-up Powershell Public Folders queue RBAC Receive Connector Relay SBS 2008 SBS 2011 Script Scripts SCVMM Security Security Update Server Server 2008 R2 Sharepoint Email SMTP TMG Transport UAG windows windows backup WSF

Email Subscription

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Email Address:

Join 248 other subscribers

Categories

Categories

Archives

Disclaimer

All information is provided "AS IS" with no warranties, and confer no rights, and as such you perform at your own risk.

NOTE: You should always make a backup of your server or export the registry before making any changes to it.

Tools

Register
Log in
Entries feed
Comments feed
WordPress.com

MS Exchange Team

An error has occurred; the feed is probably down. Try again later.

Create a free website or blog at WordPress.com.

Privacy & Cookies: This site uses cookies. By continuing to use this website, you agree to their use.
To find out more, including how to control cookies, see here: Cookie Policy

Comment
Reblog
Subscribe Subscribed
- Troubleshooting Exchange
- Already have a WordPress.com account? Log in now.

%d