Outlook WebApp/TMG – number of TCP connections allowed from a specific source IP address exceeded the configured limit rule

Posted on by Dean Grant

I recently had an issue where a third party was connecting to our Outlook WebApp Listener in Forefront Threat Management Gateway only to discover that connections would be intermittent.

On investigation, the client connections were being NAT’d to a single public IP address which was being reported to be denied due to “the number of TCP connections allowed from a specific source IP address exceeded the configured limit rule.”

In order to resolve this I was required to create an IP exception within the Flood Mitigation Settings for this single IP address and then apply the configuration.

1) Connect to Forefront Threat Management Gateway .

2) Browse to Intrusion Prevention System > Configure Flood Mitigation Settings > IP Exceptions.

3) Add the IP Address  as a computer set to the list of IP exceptions.

4) Apply the configuration change.

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s