IFPCNetworkRule::RoutingType property

  • Article

Applies to: desktop apps only

The RoutingType property gets or sets a value from the FpcNetworkRoutingTypes enumerated type that specifies the type of relationship between the source and destination network entities to which the rule applies. Network entities can have a routing relationship or a network address translation (NAT) relationship.

This property is read/write.

Syntax

HRESULT put_RoutingType(
  FpcPolicyRuleActions NetworkRoutingType
);

HRESULT get_RoutingType(
  FpcNetworkRoutingTypes *pNetworkRoutingType
);

' Data type: FpcNetworkRoutingTypes

Property RoutingType( _
  ByVal NetworkRoutingType As FpcPolicyRuleActions, _
  ByVal pNetworkRoutingType As FpcNetworkRoutingTypes _
) As FpcNetworkRoutingTypes

Property value

Value from the FpcNetworkRoutingTypes enumerated type that specifies the type of network relationship.

Error codes

These property methods return S_OK if the call is successful; otherwise, they return an error code.

Remarks

This property is read/write. Its default value is fpcRoute, which indicates that the rule defines a routing relationship between the source and destination network entities.

A routing relationship indicates that traffic allowed by policy rules is routed through the Forefront TMG computer without any address translation. This is a two-way relationship defined by a single network rule.

A NAT relationship indicates that IP addresses from the source network entity are always translated when passing through the Forefront TMG computer to the destination network entity. NAT relationships apply in only one direction. If a NAT relationship is defined from source network A to destination network B, the IP addresses of client computers on network A are replaced with an IP address of the network adapter on the Forefront TMG computer that is connected to network B on the Forefront TMG computer before requests are passed to a computer on network B. On the other hand, when a packet from the network B is returned to a client computer on network A, the address of the computer on network B is not translated. In other words, clients on network A can see the addresses of computers on network B.

If there is a NAT relationship between source network A and destination network B and a server on network B is published by a server publishing rule, which maps a port number and an IP address (or IP addresses) on the network adapter of the Forefront TMG computer that listens for requests from clients in network A to a port number and an IP address on the published server, requests that meet all the conditions specified by the server publishing rule are redirected to the IP address of the published server. If there is a routing relationship between these networks, the clients must send requests directly to the IP address of the published server.

Requirements

Minimum supported client

 Windows Vista

Minimum supported server

 Windows Server 2008 R2, Windows Server 2008 with SP2 (64-bit only)

Version

 Forefront Threat Management Gateway (TMG) 2010

IDL

 Msfpccom.idl

DLL

 Msfpccom.dll

See also

FPCNetworkRule

 

 

Build date: 7/12/2010