Questions tagged [microsoft-ftmg-2010]

Microsoft Forefront Threat Management Gateway 2010 is the current version of the product previously known as ISA Server. TMG 2010 adds subscription-based URL filtering and malware protection, the free-subscription-based Microsoft IPS Network Inspection System, and HTTPS inspection.

Microsoft Forefront Threat Management Gateway (TMG) 2010 is the last iteration of the product previously known as ISA Server, and as of 2016, has been discontinued from sale. The base product will be supported by Microsoft until 2020.

ISA Server 2006 was the last product to use the ISA Server name.

TMG 2010 added:

subscription-based URL filtering (discontinued Jan 2016)
subscription-based malware protection (discontinued Jan 2016)
(free) subscription-based Network Inspection System (NIS), a Microsoft-centric IPS (no longer updated)
outbound HTTPS inspection
Forefront Protection for Exchange integrated management from the TMG console (Exchange Edge and FPE required, sold separately)

Other notable changes:

The Enterprise Edition EMS (roughly analagous to the older CSS) can now manage standalone Standard Edition servers, which can make branch office deployments cheaper
SP1 adds click-through user overrides for URL filtering
SP1 adds a simple BranchCache setup interface
SP1 Software Update 1 adds support for SafeSearch filtering

73 questions

vote

2 answers

Configuring TMG to allow a connection through the firewall

Here's the basic outline of the problem: I'm trying to ping from 192.168.0.2 to 192.168.10.2, but the ping dies on reaching 192.168.10.1. Obviously TMG is blocking it with the firewall. :) Assuming this is a fresh install, what do I need to do in…

asked Apr 03 '11 at 21:45

Sergio Tapia

vote

1 answer

Forefront TMG Proxy blocking internal HTTP requests for FQDN

I have Forefront TMG installed as a proxy server. However, whenever I make HTTP requests to servers on the Internal network with a fully qualified DNS name, the proxy denies the connection. Denied Connection FRW-02 18/03/2011 20:06:37 Log type: Web…

proxy blocking microsoft-forefront microsoft-ftmg microsoft-ftmg-2010

asked Mar 18 '11 at 23:18

Pascal

vote

1 answer

Redundancy and Automated failover using Forefront TMG 2010 Standard between Production-DR site?

I'm using MS TMG 2010 Standard as my single firewall to publish my Exchange Server and IIS website to the internet, however it is just one VM in the DMZ network with just one network card (vNIC), what sort of redundancy method that is suitable for…

isa-server microsoft-ftmg microsoft-forefront-2010 microsoft-ftmg-2010

asked Mar 03 '11 at 11:57

Senior Systems Engineer

1,275
2
33
62

vote

2 answers

How do I allow access to a service running on a Forefront TMG Server?

I'm setting up Zabbix for monitoring on our network. So far everything is going well, the agent is installed on all the servers. All the servers except the Forefront one are communicating with the Zabbix server. I cannot connect to the the…

firewall zabbix microsoft-ftmg-2010 microsoft-ftmg zabbix-agent

asked Jul 19 '10 at 09:43

Richard C

vote

2 answers

VPN access configuration with ForeFront TMG

I am trying to configure VPN Client access with Microsoft ForeFront TMG 2010. When I try to add domain groups to allow access to them, under Group column I can only see the SID of the domain group. And the Domain column ends up empty. Microsoft…

vpn microsoft-forefront microsoft-ftmg-2010

asked Apr 13 '10 at 14:18

Yang

votes

2 answers

Sites must use TMG as default Gateway

Last week our Hyper-V server crashed and forced us to rebuild most of our network. While the network has been rebuilt we are having a major problem. We use Forefront TMG to route our web traffic using Web Listeners. We have a rule in place to take…

microsoft-ftmg-2010 microsoft-forefront-2010

asked Dec 01 '17 at 15:24

Travis Grannan

votes

2 answers

External (Internet) IP of TMG 2010 client

We need to determine external IP of clients, that connect to our internal servers (Exchange - OWA+Mail) through TMG 2010 (AD authentication). We found these log entries in TMG log: time - external client IP time - virtual IP - internal server IP -…

vpn microsoft-ftmg-2010 tmg

asked Sep 26 '16 at 11:40

Ivan Zhilin

votes

1 answer

TMG 2010: additional external nic dedicated to VPN

We are a small company with a TMG firewall in a rather remote location where the DSL line we have cannot be upgraded to higher bandwidth. With that asymmetrical DSL line we generally have a correct browsing experience except when an upload is taking…

networking vpn microsoft-ftmg-2010 tmg

asked Mar 04 '16 at 18:01

NicoMT

votes

2 answers

Allow URL:Port in Forefront TMG

I have Forefront TMG 2010 installed as a Proxy server to limit internet access to users. I usually have the following issues: 1- I can't configure Email clients (Outlook) with URLs of POP/IMAP and SMTP and I have to locate the respective IP to make…

firewall proxy microsoft-ftmg-2010 tmg

asked Mar 15 '15 at 14:30

CODERx86

votes

0 answers

Two NLB mutlicast clusters on the same VLAN processing same traffic

I have an older ISA2006 based NLB cluster which I plan to migrate to a new TMG2010 NLB cluster. I need to have both clusters active for some time during migration (with different IPs of course). Both NLB clusters operate in multicast mode, and…

windows-server-2008-r2 nlb microsoft-ftmg-2010 tmg windows-nlb

asked Mar 26 '14 at 11:07

Youmoe

votes

1 answer

Can browse ftp.microsoft.com but not our own FTP site in IE

We want to have an FTP site that works the same way ftp://ftp.microsoft.com works. We want to be able to browse the FTP site in web browsers. It seems that just recently, users are unable to browse our anonymous FTP site in IE. It works in…

firewall iis-7 ftp microsoft-ftmg-2010

asked Dec 07 '13 at 19:28

David

votes

0 answers

How to enable multicast routing in TMG 2010?

I have a TMG 2010 firewall between some office networks, which handles routing and firewalling; I need to let some application-specific multicast traffic flow between these networks; this is UDP traffic on a custom port (10234), with destination…

routing multicast microsoft-ftmg-2010 microsoft-ftmg igmp

asked May 24 '13 at 14:40

Massimo

70,200
57
200
323

votes

1 answer

Why when i installed TMG i became disconnect and connect from internal network to TMG and external

When I install TMG server 2010 on Windows Server 2008 R2, after some minutes I have request time out in ping of internet and ping of ip address of TMG server. And I became disconnected from TMG and after some minutes I connected to it. These are the…

microsoft-ftmg-2010

asked Jan 16 '13 at 13:47

M.ataollahi

votes

1 answer

Url-based web site publishing on Windows Server platform

I have a Windows 2008 Enterprise SP2 server in a datacenter. It is 32bit OS. I need to be able to do a "smart" url-based web site publishing. So that with a single external IP I can publish many sites on port 80, and some firewall logic resolves,…

windows-server-2003 web-hosting microsoft-ftmg-2010

asked Dec 14 '12 at 09:56

Maxim V. Pavlov

votes

2 answers

Forefront TMG 2010 RDP Connections without non-standard ports

From my reading, it looks like the Forefront TMG will not allow the passing of RDP connections through the firewall without configuring a non-standard port for each IP address of the internal servers and clients. The firewall will only listen for…

firewall rdp windows-firewall microsoft-ftmg-2010 microsoft-forefront-2010

asked Jul 30 '12 at 14:47

emhohensee

Prev 1 2 3

5 Next