Questions tagged [microsoft-ftmg-2010]

Microsoft Forefront Threat Management Gateway 2010 is the current version of the product previously known as ISA Server. TMG 2010 adds subscription-based URL filtering and malware protection, the free-subscription-based Microsoft IPS Network Inspection System, and HTTPS inspection.

Microsoft Forefront Threat Management Gateway (TMG) 2010 is the last iteration of the product previously known as ISA Server, and as of 2016, has been discontinued from sale. The base product will be supported by Microsoft until 2020.

ISA Server 2006 was the last product to use the ISA Server name.

TMG 2010 added:

subscription-based URL filtering (discontinued Jan 2016)
subscription-based malware protection (discontinued Jan 2016)
(free) subscription-based Network Inspection System (NIS), a Microsoft-centric IPS (no longer updated)
outbound HTTPS inspection
Forefront Protection for Exchange integrated management from the TMG console (Exchange Edge and FPE required, sold separately)

Other notable changes:

The Enterprise Edition EMS (roughly analagous to the older CSS) can now manage standalone Standard Edition servers, which can make branch office deployments cheaper
SP1 adds click-through user overrides for URL filtering
SP1 adds a simple BranchCache setup interface
SP1 Software Update 1 adds support for SafeSearch filtering

74 questions

votes

1 answer

Access FTPS from behind Forefront TMG

I have a web server on which IIS 7 host an SSL-enabled site. The client in am trying to connect with is behind the corporate Forefront TMG. The app is Total Commander - a file manager shell, that has the ability to connect to SSL FTP by putting a…

ftps microsoft-ftmg-2010

asked Sep 29 '11 at 09:51

Maxim V. Pavlov

votes

1 answer

Does TMG Reporting hate the month of July?

We have a ForeFront TMG 2010 SP1 installation. Reporting in the past has worked great. However, I now need to find out why we've ripped through half our monthly quota in the first 6 days of the billing cycle, and TMG is failing me. The reports are…

reporting microsoft-ftmg-2010

asked Jul 13 '11 at 05:25

Mark Henderson

68,316
31
175
255

votes

1 answer

General Forefront TMG 2010 network / proxy configuration

We have decided to test and then deploy a Forefront TMG server on our network of 50 - 75 users (Windows 7, XP Clients, Windows Server 2008R2 Servers and a few Linux Boxes) Our Network Topology is : 4 Floors (4 Lan Switches) > Connected to a Core…

microsoft-forefront-2010 microsoft-ftmg microsoft-ftmg-2010

asked Jun 15 '11 at 05:35

Mutahir

2,347
2
32
42

votes

2 answers

How to configure a windows phone 7 to access website behind Forefront Threat Management Gateway

As in the title. We have a WCF service, and a Windows Phone 7 client. One of our customers wants to install the service behind a TMG server. I know that TMG is an update to the old ISA server and I recall having to install a client on my PC to…

microsoft-forefront-2010 microsoft-ftmg-2010 windows-phone-7

asked May 31 '11 at 08:16

Preet Sangha

2,727
1
24
25

votes

2 answers

TMG/ISA FWX_E_NETWORK_RULES_DENIED

I've got three disparit networks that all terminate at a TMG machine. I am trying to communicate between two of these networks, but the TMG firewall keeps dropping the connection as FWX_E_NETWORK_RULES_DENIED. This is seriously confusing, as I've…

firewall isa-server microsoft-ftmg-2010

asked Apr 11 '11 at 02:36

Mark Henderson

68,316
31
175
255

votes

3 answers

Are there other application layer firewalls like Microsoft TMG (ISA) that do advanced http rules?

Since the old days, ISA and now TMG have had several great features that I often want to deploy to my customers because of the enhanced functionality and security, but often the cost of an additinal server HW, Windows Server, and TMG license is too…

firewall http reverse-proxy isa-server microsoft-ftmg-2010

asked Mar 20 '11 at 00:03

Bret Fisher

3,963
2
20
25

votes

3 answers

Forefront TMG 2010: Can you monitor realtime TCP connections and bandwidth on a per-user basis?

I'm just starting a trial of ForeFront TMG to use as a proxy server. I know I can get a real time activity monitor and filter on a per user basis, but would like to be able to get a real time activity monitor of all users that I can then sort by…

proxy microsoft-forefront microsoft-ftmg microsoft-ftmg-2010

asked Mar 10 '11 at 12:04

user65235

vote

1 answer

Getting error 12206 "Proxy chain loop" when connecting to an IP from local subnet

Config: TMG is up at 10.0.3.1 with three network adapters, one of them is connected to Internet. Local Windows 8.1 PC at 10.0.3.xx attempts to connect to a managed switch (internal) at http://10.0.3.yy via browser. PC has 10.0.3.1 as gateway, the…

proxy windows-8.1 microsoft-ftmg-2010

asked Feb 27 '17 at 07:36

Vesper

vote

0 answers

Set up TMG as a reverse proxy, https-to-http

tl;dr I'm having trouble getting TMG to properly reverse proxy an HTTPS connection on the outside, to an HTTP connection on the inside. We have a LAN (10.0.7.0/24) that hosts a Windows Server 2008 box, with Spiceworks installed. Spiceworks uses…

apache-2.2 reverse-proxy microsoft-ftmg-2010 monitoring

asked Oct 14 '14 at 15:54

Wogan

vote

0 answers

Windows VPN / TMG Server Expired Password Stuck Sending New Password

I have a Windows Server 2008R2 Server running Forefront TMG (7.0.9193.500) which works as our firewall and VPN gateway. For the most part it works, blocking traffic and allowing users to VPN in. I have a problem with password expiry causing…

windows-server-2008-r2 vpn microsoft-ftmg-2010

asked Oct 14 '14 at 12:49

Flare Star

vote

1 answer

TMG reverse proxy and basic config

I recently set up TMG2010 and I believe I've done something wrong with my configuration. I do not want to run anything extra apart from a web publishing/reverse proxy setup. My internet goes to an ASA, it is natting port 80 of the external static to…

web-server reverse-proxy microsoft-ftmg-2010 microsoft-ftmg

asked Sep 11 '14 at 22:13

Abraxas

1,199
1
15
25

vote

0 answers

Route between two branch offices via IPsec VPN to head office?

I have TMG 2010 running on Server 2008 R2 in our head office with 2 branch offices connecting in using Dray Tek 2930 routers with IPsec site to site VPNS. The remote sites can route between the head office network and vice versa with no issues. I…

vpn routing ipsec microsoft-ftmg-2010

asked Jun 13 '14 at 07:24

Leigh

vote

1 answer

TMG returns uncompressed content response from IIS

I'm fighting with my customer's TMG for a few days already and I'm out of ideas. I hope you can help me. As I understand it TMG is set as a proxy between Internet and local computer with IIS with my application on it. I need to configure it to pass…

iis microsoft-ftmg-2010 tmg

asked Apr 28 '14 at 08:53

MattheW

vote

0 answers

Outlook client behind forefront TMG 2010 unable to connect to External Exchange server

Here is my situation. Our office just got sold and we are working on the migration to the new company's environment. Everything has worked fine until the Outlook client's migration. Our firewall is TMG Forefront 2010 and we were all connected using…

firewall exchange microsoft-ftmg-2010 microsoft-forefront autodiscovery

asked Mar 26 '13 at 12:19

placombe

vote

1 answer

Publishing a web app listening on two different ports with TMG

We have an internal web app built on some custom Java stuff. The app listens on port 8080, but also uses IIS on port 80 to get user authentication. Opening the site in a browser produces HTTP GETs to both ports/urls. Is a case like this possible to…

microsoft-ftmg-2010

asked Nov 14 '12 at 11:40

mikkoko

Prev 1

3 4 5 Next