The RoutingType property gets or sets a value from the FpcNetworkRoutingTypes enumerated type that specifies the type of relationship between the source and destination network entities to which the rule applies. Network entities can have a routing relationship or a network address translation (NAT) relationship.
HRESULT put_RoutingType( FpcPolicyRuleActions NetworkRoutingType ); HRESULT get_RoutingType( FpcNetworkRoutingTypes* pNetworkRoutingType );
Pointer to a value from the FpcNetworkRoutingTypes enumerated type that is set on return to either fpcRoute, which indicates that the network entities have a routing relationship, or to fpcNat, which indicates that the network entities have a NAT relationship.
Value from the FpcNetworkRoutingTypes enumerated type that specifies the type of network relationship.
These property methods return S_OK if the call is successful; otherwise, they return an error code.
Property RoutingType As FpcNetworkRoutingTypes
Value from the FpcNetworkRoutingTypes enumerated type that specifies the type of network relationship.
This property is read/write. Its default value is fpcRoute, which indicates that the rule defines a routing relationship between the source and destination network entities.
A routing relationship indicates that traffic allowed by policy rules is routed through the Forefront TMG computer without any address translation. This is a two-way relationship defined by a single network rule.
A NAT relationship indicates that IP addresses from the source network entity are always translated when passing through the Forefront TMG computer to the destination network entity. NAT relationships apply in only one direction. If a NAT relationship is defined from source network A to destination network B, the IP addresses of client computers on network A are replaced with an IP address of the network adapter on the Forefront TMG computer that is connected to network B on the Forefront TMG computer before requests are passed to a computer on network B. On the other hand, when a packet from the network B is returned to a client computer on network A, the address of the computer on network B is not translated. In other words, clients on network A can see the addresses of computers on network B.
If there is a NAT relationship between source network A and destination network B and a server on network B is published by a server publishing rule, which maps a port number and an IP address (or IP addresses) on the network adapter of the Forefront TMG computer that listens for requests from clients in network A to a port number and an IP address on the published server, requests that meet all the conditions specified by the server publishing rule are redirected to the IP address of the published server. If there is a routing relationship between these networks, the clients must send requests directly to the IP address of the published server.
Client | Requires Windows Vista or Windows XP. |
---|---|
Server | Requires Windows Server 2008. |
Version | Requires Forefront Threat Management Gateway (TMG). |
IDL |
Declared in Msfpccom.idl. |
DLL |
Requires Msfpccom.dll. |
Send comments about this topic to Microsoft
Build date: 11/30/2009
© 2008 Microsoft Corporation. All rights reserved.