Category Archives: Forefront|TMG
Rollup 1 for Forefront UAG 2010 Service Pack 1 Update 1
Today, Microsoft released a first rollup package for UAG 2010 SP1 Update 1. You can find a list of all fixes that are included in the rollup 1 on http://support.microsoft.com/kb/2647899. Oh and yes, a rollup 1 for TMG 2010 SP2 … Continue reading
Forefront TMG 2010 SP2 and Forefront UAG 2010 SP1 Update 1
Microsoft recently announced the availability of two new updates for their Forefront Edge products: Service Pack 2 for Forefront TMG 2010 Update 1 for Forefront UAG 2010 Service Pack 1 You can download the SP2 for TMG on http://www.microsoft.com/download/en/details.aspx?displaylang=en&id=27603 and … Continue reading
Improvements for Signature Expl:Win/HTTP.URL.XSS!0000-0000 from TMG 2010 NIS
You probably have noticed that Microsoft released a generic Exploit-based signature for Cross-site scripting attacks last year (btw I wrote about it as well, see http://blogs.ecreation.ch/2010/05/02/tmgs-network-inspection-system-nis-helps-to-protect-against-sql-injection-and-cross-site-scripting/). Now, based on a specific customer project I did some research about this generic … Continue reading
TMG Custom Error Pages are not displayed with IE 8/9 for HTTPS Sites
Have you asked yourself why IE 8 or 9 doesn’t render the custom error page when a HTTPS is blocked? Especially because it works for a HTTP site? The good answer: That’s not a bug, it’s by design. The IE … Continue reading
UAG and TMG SP1
After the first service pack for Forefront TMG is available, you may ask yourself if it is necessary to install that on a UAG box. The short answer is: Yes! From the SP1 release notes (http://technet.microsoft.com/en-us/library/ff686708.aspx#UAG): Support for Forefront Unified … Continue reading
How to Block Access to a Website based on Keywords with TMG 2010 or When TMG’s URL Filtering doesn’t Help
There are some situations where the new URL filtering built-in in TMG 2010 doesn’t help to block access. For example, when a user is looking for forbidden content via an index page, for example http://indexer/get_content_as_preview.aspx?ShowContent=http://www.forbidden_content.com. Sure, the access can be … Continue reading
Hardening Forefront TMG 2010
To harden a Forefront TMG 2010 installation, you can use the updated SCW (Security Configuration Wizard) template. The updated SCW tempalte can be found at http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=8809cfda-2ee1-4e67-b993-6f9a20e08607.
TMG NIS White Paper
Today the Forefront TMG product group released a comprehensive white paper called “Guide for Configuring, Monitoring and Troubleshooting the Network Inspection System (NIS) in Forefront Threat Management Gateway (TMG) 2010”. The document has 60 pages of pure technical details related … Continue reading
TMG 2010 Availability and HTTPS Inspection Certificate Requirement
After the public announcement of TMG 2010 (http://blogs.technet.com/forefront/archive/2009/12/03/new-forefront-enterprise-security-solutions-for-safe-productive-web-surfing-and-remote-access.aspx) yesterday, I want to start a serie of TMG-related blogs. And I’m starting with one of the new features, HTTPS Inspection. When you configure the HTTPS Inspection, you have to decide which … Continue reading
About Forefront TMG with Forefront UAG: What is supported and what not?
From TechNet (http://technet.microsoft.com/en-us/library/ee522953.aspx): By default, Forefront Threat Management Gateway (TMG) is installing during Forefront Unified Access Gateway (UAG) Setup. Forefront TMG is installed as a complete product, and is not modified to run on a Forefront UAG server. … Continue reading