Outlook WebApp/TMG – number of TCP connections allowed from a specific source IP address exceeded the configured limit rule

I recently had an issue where a third party was connecting to our Outlook WebApp Listener in Forefront Threat Management Gateway only to discover that connections would be intermittent.

On investigation, the client connections were being NAT’d to a single public IP address which was being reported to be denied due to “the number of TCP connections allowed from a specific source IP address exceeded the configured limit rule.”

In order to resolve this I was required to create an IP exception within the Flood Mitigation Settings for this single IP address and then apply the configuration.

1) Connect to Forefront Threat Management Gateway .

2) Browse to Intrusion Prevention System > Configure Flood Mitigation Settings > IP Exceptions.

3) Add the IP Address  as a computer set to the list of IP exceptions.

4) Apply the configuration change.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s