TMG changing protocol in URLs
The problem isn't really in host headers, but that URLs in content delievered through TMG is changed. HTTP: to HTTPS: and vice versa.
There is a tab on the TMG rule called Link Translation. Uncheck Apply link translation to this rule and TMG stops doing that. Can't be much simpler. Except maybe no translation should have been the default?