Browse by Tags

Related Posts
  • Blog Post: How to create a CNG HTTPSi cert using a 2008r2 CA

    In a previous article we explained how to create a self-signed CNG certificate, suitable for the HTTPS Inspection feature, which can be used to inspect sites using an SHA-256 certificate. In this article we will explain how to generate a similar certificate using your internal CA based on Windows 2008...
  • Blog Post: Common Problems while Implementing HTTPS Inspection on Forefront TMG 2010 RC

    1. Introduction The HTTPS Inspection feature on TMG 2010 can protect internal client workstation from accessing non legitimate HTTPS web sites. The whole idea is to avoid that client open a SSL tunnel with the destination server and the content that pass through this tunnel not being inspected...
  • Blog Post: URL Filtering is Here!

    Quick Introduction Hi Everyone, We are proud to introduce as part of Forefront TMG Beta3 one of the key elements in the Secure Web Gateway (SWG) role of Forefront TMG – URL Filtering. URL Filtering allows controlling end-user access to Web sites, protecting the organization by denying access...
  • Blog Post: New Articles for Tales from the Edge

    We're happy to announce publishing of two more articles on the Tales from the Edge community site: Part 1 of a three-part series on using Network Monitor 3 to troubleshoot Firewall and TMG client traffic: Network Monitor 3.3 RWS Parser Basics, Part 1: Introduction to RWS Protocol Analysis ...
  • Blog Post: Deny Page Customization on Forefront TMG 2010

    1. Introduction With the addition of the Denied URL Request Action on Forefront TMG (see Figure 1) there are many questions around the capability to customize this page to change colors, add company’s logo, etc. This can be done just like it was possible to do with the regular error pages on ISA...
  • Blog Post: Forefront TMG Beta 3 is Released

    Hi Everyone: Our third and final planned beta is upon us and I am proud to announce that Forefront TMG Beta 3 is not only feature complete, but it is publicly available for everyone to download . This is an important milestone for the team as we are for the first time publicly previewing our integrated...
  • Blog Post: Office Web Components Advisory, ISA Server and Forefront TMG

    Hello Community: I would like to clarify some points for you regarding the security advisory that was released on 13 July. Microsoft Security Advisory 937432 provides information about a vulnerability in Office Web Components (OWC) and links to a mechanism to help mitigate this vulnerability. As many...
  • Blog Post: Caching Comments from Yahoo's Mark Nottingham

    I recently had the good fortune to collaborate with Mark Nottingham from Yahoo regarding some caching problems for some of their pages. Mark has written a fine summation of the problem and offers a functional solution (gotta love those functional solutions) for scenarios where a proxy is caching something...
  • Blog Post: Introducing the Forefront Experts Blog

    Hello Community: I have not been posting as much directly here on the technical blog as the rest of the team. I hope you are enjoying the wave of technical content that is now coming out about the upcoming TMG release. This was based on direct feedback and in response to your demand. Let us know what...
  • Blog Post: TMG Client introduces automatic detection using Active Directory

    1. Introduction The new TMG Client that is available on TMG 2010 is now capable of performing automatic discovery using a record that resides on Active Directory. TMG Client still able to use the traditional methods (DHCP / DNS) for automatic discovery, the difference now is that if both options...
  • Blog Post: Forefront TMG Beta 2: SDK Available

    Hi ISA/TMG Community: I thought I would drop a quick note to the community and let everyone know that the SDK for TMG is already available on MSDN. We have recently been receiving a number of queries from partners and potential new ISVs who want to start to build upon TMG for value-add solutions and...
  • Blog Post: The Road to RC Needs Telemetry

    Hello Community: I wanted to provide an update to everyone where we are at with the upcoming release and also put out a call to action for some help. First of all, an update on the product release. We have just internally completed our escrow test pass cycle for the upcoming release candidate (RC...
  • Blog Post: Resolving TMG Array Join Failures - Reporting Server Leftovers

    Introduction Forefront TMG 2010 provides an enhanced array management feature known as array join / disjoin. This article describes a problem that may be encountered as a result of a failure during this process, the solution you can apply as well as a discussion of how and why this problem occurs...
  • Blog Post: Access to remote FTP server through TMG 2010 may fail with error 550 (Access Denied)

    Hi everybody! In this article we will see how to troubleshoot an issue with accessing an FTP server behind TMG 2010. Imagine we have the following situation: a client PC on an internal corporate network want to access a remote FTP server through TMG 2010 using an FTP client such as, for example...
  • Blog Post: Forefront TMG 2010 troubleshooting flowcharts on TechNet

    The following Troubleshooting Web access protection topics have been released recently to Forefront TMG 2010 TechNet documentation , including troubleshooting flowcharts, diagnostics, and resolutions to various issues: Troubleshooting URL filtering —This topic provides guidance for diagnosing and resolving...
  • Blog Post: Forefront TMG Beta 2 is Released

    Hi Everyone: I wanted to publish a follow-on to Jim's enthusiastic post about our public beta. We have reached an important and critical milestone in the release of Forefront Threat Management Gateway (TMG), our comprehensive network protection solution. For those of you catching up on the TMG line...
  • Blog Post: An Inside View: The Road From Beta to RTM

    Hello Community: I have not blogged in a while, so I thought I would provide some insights on what the team has been busy with since releasing Beta 3 in June. First, we have released a number of updates to NIS through Microsoft Update, our Beta 3 tools and SDK and also updates on how to use System...
  • Blog Post: Announcing the availability of TMG Best Practices Analyzer Version 8

    I am happy to announce to the community that the next version of Forefront TMG Best Practices Analyzer Tool (TmgBPA version 8) has been released and is now publicly available. TmgBPA is used by TMG administrators to verify proper configuration, and to help troubleshoot TMG-related issues. TmgBPA is...
  • Blog Post: The Momentum is Building for TMG RTM

    Hello Community: The momentum is building around the final phases of this release as we work towards our launch in Berlin at TechEd Europe in November. Many of our partners will also be showcasing their products for TMG and many of our customers will hopefully be sharing some of their early success...
  • Blog Post: MS09-008 may affect ISA Server or Forefront TMG Deployments

    Last year Rayne Wiselman wrote in the ISABlog about the Windows Server 2008 DNS Block Feature and how this behavior can impact ISA Server deployments. With MS09-008 applied, the wpad and isatap blocking behavior is now present in Windows XP Professional (x64), Windows Server 2000 (SP4) and Windows Server...
  • Blog Post: Compiling Forefront TMG 2010 SDK Samples

    The Software Development Kit (SDK) for Forefront Threat Management Gateway (TMG) 2010 is available for download from the Microsoft download center here . We have received a number of questions about issues compiling the SDK samples and wanted to share a few tips with you. Preparing Your Environment...
  • Blog Post: Updated and New Tales From the Edge Articles

    Hi Folks, Our doc team has been burning the midnight oil for us keeping our articles up-to-date and relevant! We have some new or updated articles available for your reading pleasure: 1. (updated) Security Considerations with Forefront Edge Virtual Deployments 2. (updated) Considerations when using...
  • Blog Post: How Disk Bottleneck can affect TMG Performance?

    1. Introduction Troubleshooting performance issue is not easy regardless of the product, with TMG being no different, matter fact it is tougher because there are so many other elements involved that are external to TMG, which can play a big role on the overall performance experience. 2. General...
  • Blog Post: Network Load Balancing (NLB) configuration settings in Forefront TMG: to clear or not to clear?

    Introduction Network Load Balancing integration is one of the features that existed in the previous version of Forefront Threat Management Gateway (TMG), Internet Security and Acceleration (ISA) Server 2006. The concept of this functionality is described in Network Load Balancing Integration Concepts...
  • Blog Post: Routing mania or why removing a route from the operating system doesn’t change the routing in Forefront TMG

    In this blog I will describe how you work with network routes in Forefront TMG Medium Business Edition and Forefront TMG 2010. That is, routes as found in the IP routing table… The problem Imagine that you just installed your Forefront TMG Server (either Medium Business Edition or 2010). You run step...