Server publishing rules require an additional NIC
Applies To: Forefront Threat Management Gateway (TMG)
Cause
The single network adapter configuration is designed to be used for Web proxying and caching, and not as an edge firewall. Server publishing rules, which use network address translation (NAT) to protect the identity of internal publishing servers, are not useful in such a configuration.
Solution
If you want to use server publishing rules effectively, you should configure your Forefront TMG with an additional adapter.