TMG

For a long time, ForeFront TMG (and ISA before it) has been the go-to Microsoft reverse proxy solution for many applications, including Exchange Server. However, with no more development roadmap for TMG 2010 a lot of customers are looking out for an alternative solution that works well with Exchange Server 2013. The Windows team have added an additional component called Application Request Routing (ARR, or as Greg the pirate says, ARR!) 2.5 to the Internet Information Service (IIS) role, which enables IIS to handle reverse proxy... [Lire la suite]

We are happy to announce the availability of Rollup 3 for Forefront Threat Management Gateway (TMG) 2010 Service Pack 2 (SP2). TMG SP2 Rollup 3 is available for download here: Rollup 3 for Forefront Threat Management Gateway (TMG) 2010 Service Pack 2 Please see KB Article ID: 2735208 for details of the fixes included in this rollup. The Build Number for this update is: 7.0.9193.575 To install this update, you must be running Forefront Threat Management Gateway 2010 Service Pack 2. --> Please see the blog post on ISABLOG... [Lire la suite]

Bonjour, Voici une nouvelle intéressante d'un fournisseur de solutions de load balancing, KEMP :   Étant donné que Microsoft a annoncé la cessation de certains produits de la gamme Forefront, un grand nombre de partenaires et de clients finaux nous demandions s’il y avait quelque chose dans la tête pour combler le vide.  La réponse et « Oui ! » Nous avons le plaisir d’annoncer un nouveau « feature-set » qui aidera aux clients d'introduire des fonctionnalités d’équilibrage de charge serveurs... [Lire la suite]

Now that Exchange Server 2013 is available, some of you may well be wondering how to publish it to the Internet using Microsoft Threat Management Gateway (TMG) or perhaps the Microsoft Unified Access Gateway (UAG). This post will help you configure TMG, for sure, but not UAG – as for the time being, you can’t effectively publish Exchange Server 2013 using UAG without turning off many of the security features in UAG. Why’s that? Well, as you’ll have gathered from other posts on this fine blog, we re-wrote OWA for Exchange 2013. And... [Lire la suite]

A much needed feature was added in Service Pack 2 for Forefront TMG 2010. This great new feature gives you the ability to lock accounts on TMG at the local level before accounts are actually locked out in the domain. The account lockout feature, when used properly, will prevent TMG from trying to authenticate a user to a Domain Controller after the defined number of bad passwords has been attempted. In one of my previous blogs I talked about scenarios where TMG is being used as a reverse proxy and the Account Lockout Threshold has... [Lire la suite]

Problem When publishing Exchange 2010 “Outlook Anywhere” via TMG 2010, you may find that some of your external Outlook users may intermittently experience issues sending email. They may report, when sending a new email, that the email may get “stuck” in the Outbox folder. The users may find that the email will be sent after a random number of minutes…or not at all. Forcing a Send and Receive does not help. However, they may find that if they close and restart the Outlook client, the items are then sent. The difficulty in... [Lire la suite]

Here’s a new Knowledge Base article we published recently. This one talks about a fix for an issue where the TMG 2010 firewall service crashes frequently and logs an Event ID 14057. ===== Symptoms Consider the following scenario: You install Service Pack 2 (SP2) for Microsoft Forefront Threat Management Gateway 2010. You use Forefront Threat Management Gateway to publish a secure website by using Secure Sockets Layer (SSL). In this scenario, the Forefront Threat Management Gateway Firewall service (Wspsrv.exe) may crash... [Lire la suite]

Suite à une demande particulière d'un client, j'ai du réfléchir à la mise en place d'une solution permettant d'authentifier les clients, j'ai donc regardé de ce côté : Que ce soit avec Windows Phone 7, Windows Mobile, iPhone ou Android, il est conseillé de sécuriser vos synchronisations ActiveSync surtout dans un contexte où la tendance est que de plus en plus de terminaux mobiles de tous types essaieront de se connecter à votre environnement de messagerie. Une manière de sécuriser ces communications est d’utiliser un certificat... [Lire la suite]

Usually we’re using tools like Network Monitor, various text file parser, Procmon, Windbg… to solve ISA/TMG cases every day in and out in Microsoft Customer Service & Support. Sometimes we also use Excel to be able to filter the exported Firewall or Web Proxy Logs our customers send to us, e.g. only display traffic for a specific Client IP or for a specific rule. Some time ago I realized that there’s another quite powerful feature of Excel, which I didn’t connect with analyzing network traffic before, but more with things like... [Lire la suite]

Grand merci à Richard Hicks pour son billet sur le slipstream de TMG SP2. Je confirme, ca va réellement plus vite, surtout quand on a une ferme à installer. --> A voir sur le site : http://danstoncloud.com/blogs/simplebydesign/archive/2011/10/24/slipstream-de-tmg-sp2.aspx