When attempting to backup a TMG server there may ba a number of issues that prevent normal operation including port conflicts, and non-obvious access rule requirements. A symptom of this if the media server freezing when browsing the TMG server.
A typical error that is seen is:
Log Name: Application
Source: Backup Exec
Event ID: 58117
Level: Error
Description:
The Backup Exec Remote Agent for Windows Servers Service did not start. The application failed to listen on the NDMP TCP/IP port. Check the network configuration.
The TMG install moves the dynamic port range to 10000, which causes wininit.exe to conflict with the Backup Exec Remote Agent. To resolve this issue run the following command and reboot the server:
netsh int ipv4 set dynamicportrange tcp startport=10010 numberofports=30000
Then create the two following firewall access rules:
From: Internal
To: Local Host
Condition: All Users
Protocol: BackupExec Inbound (10000-10030, TCP, Outbound)
From: Local Host
To: Internal
Condition: All Users
Protocol: BackupExec Outbound (10000, TCP, Outbound), (10030-10131, TCP, Outbound), (6101, TCP, Outbound)
Note: All Protocol settings are outbound.