website statistics
E-Mail Protection fixes on Forefront TMG 2010 SP2 - Yuri Diogenes's Blog - Site Home - TechNet Blogs

Yuri Diogenes's Blog

Thoughts from a Senior Knowledge Engineer @ Microsoft Data Center, Devices & Enterprise Client – CSI (Solutions Group)

E-Mail Protection fixes on Forefront TMG 2010 SP2

E-Mail Protection fixes on Forefront TMG 2010 SP2

  • Comments 4
  • Likes

If you are following my blog for a long time you probably read the post TMG E-Mail Protection Feature x Exchange 2010 SP1 (first published more than an year ago) when we were dealing with a major E-Mail protection issue on TMG. Due the nature of the integration between Forefront TMG and E-Mail Protection feature (Forefront for Exchange and Exchange Edge) I also wrote this presentation to assist you while troubleshooting this feature.

The good news is that Forefront TMG 2010 SP2 brings to you the following fixes that will alleviate lots of the issues that were present in the past with this integration:

  • 2591744 FIX: The Email Policy Integration feature that redirects spam email messages to a quarantine mailbox address does not work when Forefront Protection for Exchange 2010 is installed on Forefront Threat Management Gateway 2010
  • 2591719 FIX: "0x80070057 (The parameter is incorrect)" error message is logged, and the Forefront TMG Managed Control service cannot start, when you enable and configure the "Email Policy" feature for Forefront Threat Management Gateway 2010
  • 2619992 FIX: The email policy configuration is reapplied when you configure email policy settings in Forefront Protection for Exchange that are not configured in a Forefront Threat Management Gateway 2010 environment
  • 2591729 FIX: The Exchange Edge default Receive connector is disabled unexpectedly when the "Email policy integration" feature is not configured in Forefront Threat Management Gateway 2010

Go get SP2 and enjoy it!!

Comments
  • I still have the problem that on a machine with Forefront TMG 2010 (SP1 update 1) / Forefront Protection for Exchange 2010 (11.0.713) and Exchange 2010 Edge Role (SP1 Rollup 4-v2) installed all additional receive connectors configured with EMC of Edge get overwritten by TMG Email Policy Integration.

    Will that be fixed with TMG SP2?

    Thx

  • AFAIK the recommendation to create all settings on Forefront TMG console rather than Exchange (and FPE) persists.

  • Hi Yuri,

    thanks for you reply, i've installed TMG SP2 now on my multi-homed Edge/TMG Server.

    I still have the Problem that EMC configured Receiveconnectors get overwritten by TMG (Have found a workarround to disable edge-subscription, create smtp route, recreate edge-subscription) but there's still no way to configure RemoteIPRanges for those Receiveconnectors, because they always get overwritten by the "Email policy integration".

    I haven't found a way where to apply Remote IP Ranges via Forefront TMG console for a SMTP Route, may that isn't possible?

    Thanks!

    Markus

  • "Remote IP Ranges via Forefront TMG console" -> that I don't think it is possible.

Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment