As new folks are starting to install Forefront TMG 2010 they are finding out that right after install it they already have an alert on Forefront TMG console similar to the one below:
This behavior is documented in the Forefront TMG 2010 Release Notes and says:
Windows Filtering Platform error message following a computer or Forefront TMG services restart
After you restart the Forefront TMG computer or services, the following error message might be displayed:“Forefront TMG detected Windows Filtering Platform filters that may cause policy conflicts on the server. The following providers may define filters that conflict with Forefront TMG firewall policy: Microsoft Corporation.”If this message is displayed, disable the alert from appearing again, since it does not indicate a real conflict.
From: http://technet.microsoft.com/en-us/library/dd440976.aspx#BKMK_WindowsFilteringPlatformerrormessageafteracomputerorservicesrestart
As the release notes says this is an expected error message, it happens because Forefront TMG firewall engine detects filters on Windows Filtering Platform and it can be safely ignored. If you want to confirm that Forefront TMG is handling the core WFP categories you can use the netsh command below:
Microsoft Windows [Version 6.1.7600]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Users\administrator.CONTOSO>netsh advfirewall monitor show firewall
Global Settings:
----------------------------------------------------------------------
IPsec:
StrongCRLCheck 0:Disabled
SAIdleTimeMin 5min
DefaultExemptions NeighborDiscovery,DHCP
IPsecThroughNAT Never
AuthzUserGrp None
AuthzComputerGrp None
StatefulFTP Disable
StatefulPPTP Enable
Main Mode:
KeyLifetime 480min,0sess
SecMethods DHGroup2-AES128-SHA1,DHGroup2-3DES-SHA1
ForceDH No
Categories:
BootTimeRuleCategory Microsoft Forefront Threat Management Gateway
FirewallRuleCategory Microsoft Forefront Threat Management Gateway
StealthRuleCategory Microsoft Forefront Threat Management Gateway
ConSecRuleRuleCategory Windows Firewall
For more information on TMG integration with WFP read Chapter 1 (page 7) of the Microsoft Press Forefront TMG Administrator’s Companion book.
Microsoft released the Security Compliance Manager version 1.0 beta, this tool provides centralized security baseline management features, baseline portfolio, customization capabilities, and the ability to automate the creation of GPOs and System Center Configuration Manager DCM packs. Here are some features and benefits of this tool:
To participate on the Beta for the application register at https://connect.microsoft.com/site715
Download is available at https://connect.microsoft.com/site715/Downloads/DownloadDetails.aspx?DownloadID=20423
More info about others security guidance go to http://technet.microsoft.com/en-us/library/cc184906.aspx
We just released two new articles on the Tales from the Edge community site. Here are the link for those articles:
Network Monitor 3.3 RWS Parser Basics, Part 1: Introduction to RWS Protocol Analysis
Understanding the Re-Injection Mechanism Improvement on Forefront TMG
I hope you enjoy it !!
The video that me and Tom Shinder recorded is now available at Edge web site. On this 23 minutes video we talk about the Web Protection on Forefront TMG and the features that are part of this solution.
http://edge.technet.com/Media/TMG-Web-access-protection/
A special thanks to my friend Mohit Kumar (Sr. SEE on ISA Team) for interviewing us and for David Tesar to publish this at Edge Web site.
I would like to say thanks for all partners that joined this morning to the troubleshooting performance issue on ISA Server session, it was great to share some ISA Perf best practices with you all. We had a great audience from many locations (US, Europe, Brazil and other places), which makes me really proud since I know that you have a time zone challenge to overcome in order to participate on that. Thanks for taking the time to watch this webcast.
For those partners that could not participate today, the offline recording version should be available on the Microsoft Partner Learning Center, so you still have a chance to watch on a time that is better for you.
Again, thanks a lot and hope to talk to you again soon.
What you were waiting since TMG 2010 was just released, now you can make your calculations to see which hardware you will need for your TMG Deployment:
http://www.microsoft.com/downloads/details.aspx?FamilyID=01b2f7a5-8165-4ead-9693-994504f66449&displaylang=en
To read more about this tool review the following post on ISA/TMG Team blog:
http://blogs.technet.com/isablog/archive/2010/02/11/forefront-tmg-2010-capacity-planning-tool-now-available.aspx
I received my copy today directly from MSPress, if you pre ordered yours through Amazon you will be probably receiving yours pretty soon:
A collective thanks to all MSPress folks that make this great edition: Martin DelRe, Karen Szall, Carol Vu and Devon Musgrave. You guys rock !!