How to create a CNG HTTPSi cert using a 2008r2 CA

In a previous article we explained how to create a self-signed CNG certificate, suitable for the HTTPS Inspection feature, which can be used to inspect sites using an SHA-256 certificate. In this article we will explain how to generate a similar certificate using your internal CA based on Windows 2008 R2. Using a certificate issued…


Resolving TMG Array Join Failures - Reporting Server Leftovers

Introduction Forefront TMG 2010 provides an enhanced array management feature known as array join / disjoin.  This article describes a problem that may be encountered as a result of a failure during this process, the solution you can apply as well as a discussion of how and why this problem occurs.   The Problem You…


How Disk Bottleneck can affect TMG Performance?

1. Introduction   Troubleshooting performance issue is not easy regardless of the product, with TMG being no different, matter fact it is tougher because there are so many other elements involved that are external to TMG, which can play a big role on the overall performance experience.    2. General Considerations   One of the…


Updated and New Tales From the Edge Articles

Hi Folks, Our doc team has been burning the midnight oil for us keeping our articles up-to-date and relevant!We have some new or updated articles available for your reading pleasure: 1. (updated) Security Considerations with Forefront Edge Virtual Deployments2. (updated) Considerations when using antivirus software on FF Edge Products3. (completed) the Network Monitor 3.3 RWS…


New Articles for Tales from the Edge

We’re happy to announce publishing of two more articles on the Tales from the Edge community site:   Part 1 of a three-part series on using Network Monitor 3 to troubleshoot Firewall and TMG client traffic: Network Monitor 3.3 RWS Parser Basics, Part 1: Introduction to RWS Protocol Analysis   A description of Forefront TMG…


Forefront TMG 2010 troubleshooting flowcharts on TechNet

The following Troubleshooting Web access protection topics have been released recently to Forefront TMG 2010 TechNet documentation, including troubleshooting flowcharts, diagnostics, and resolutions to various issues: Troubleshooting URL filtering—This topic provides guidance for diagnosing and resolving URL filtering common issues, and a flowchart to help you troubleshoot and resolve the following issues: Incorrect or unknown…


Routing mania or why removing a route from the operating system doesn’t change the routing in Forefront TMG

In this blog I will describe how you work with network routes in Forefront TMG Medium Business Edition and Forefront TMG 2010. That is, routes as found in the IP routing table… The problem Imagine that you just installed your Forefront TMG Server (either Medium Business Edition or 2010). You run step one of the…


Compiling Forefront TMG 2010 SDK Samples

The Software Development Kit (SDK) for Forefront Threat Management Gateway (TMG) 2010 is available for download from the Microsoft download center here. We have received a number of questions about issues compiling the SDK samples and wanted to share a few tips with you. Preparing Your Environment When compiling the SDK with Visual Studio 2008/2005,…


Announcing the availability of TMG Best Practices Analyzer Version 8

I am happy to announce to the community that the next version of Forefront TMG Best Practices Analyzer Tool (TmgBPA version 8) has been released and is now publicly available.  TmgBPA is used by TMG administrators to verify proper configuration, and to help troubleshoot TMG-related issues. TmgBPA is also used for collecting all the relevant…