Alan Schmarr Consultant BUI Session Code: 303

Agenda Forefront Overview TMG Value Proposition The deep dip Deployment and Management Web client protection Intrusion Prevention System Firewall enhancements Demos Demos Demos! Call to Action

Management & VisibilityManagement & Visibility Dynamic Response Network Edge Server Applications Client and Server OS An Integrated Security System

TMG At A Glance Control Network Policy Access at the Edge (Firewall) Protect users from Web browsing threats (Web Client Protection) Protect users from threats ( Protection) Protect desktops and servers from Intrusion attempts (NIPS) Enable Users to Remotely Access Corporate Resources (VPN, Secure Web Publishing) Simplified Management & Deployment ComprehensiveIntegrated Simplified

TMG New Feature Drill Down VoIP traversal (SIP) Enhanced NAT ISP Link Redundancy & Aggregation Firewall HTTP Anti- virus/spyware URL Filtering HTTPS forward inspection Secure Web Access Exchange Edge/FSE integration Anti-Virus Anti-spam Protection Network Inspection System (NIS) Security Assessment and Response (SAS) Intrusion Prevention NAP integration with VPN role SSTP support Remote Access Array Management Scenario UI & Wizards Change tracking Enhanced reporting W2K8, native 64-bit Deployment & Management Update Center : HTTP: AV+URL Filtering AV+Anti-Spam NIS signatures Subscription Services 6

TMG as a Firewall First and foremost: World Class Firewall Integrated SIP and VOIP support ISP link redundancy & aggregation Enhanced NAT support (ENAT) SQL logging and offline support Updated Firewall Client Secure auto-discovery using Active Directory

Deployment & Management Getting Started WizardRe-designed user interface with task discoverabilityAll new array support and managementUpdate Center for signatures and content updatesWindows Server 2008 and 2008 R2 platformsVirtualization ready!

Deployment Roles for TMG Secure Web Gateway Firewall / IPS Secure Relay Remote Access Unified Threat Management (UTM)

Forefront TMG in the Branch Web Proxy & Cache Featuring Anti-Virus Anti-Virus URL Filtering URL Filtering HTTPS Inspection HTTPS Inspection Network Intrusion Inspection Network Intrusion Inspection Web Proxy & Cache Featuring Anti-Virus Anti-Virus URL Filtering URL Filtering HTTPS Inspection HTTPS Inspection Network Intrusion Inspection Network Intrusion Inspection Site to Site VPN Windows Server 2008 R2: Single Host for TMG & BranchCache (Hosted Cache) Windows Server 2008 R2: Single Host for TMG & BranchCache (Hosted Cache)

Web Client Protection Download scanning of files Integrated Microsoft AV/AM engine Inspection settings per rule Malware inspection URL category sets and exclusions Integrated with forward proxy Beta 3 functionality URL filtering URL filtering, malware scanning and IPS protection Firewall client notification to end users HTTPS inspection New log fields with URL/Malware info SQL Server Reporting Services Customizable reports Logging & Reporting

Secure Web Access Alan Schmarr Consultant BUI

What's new in TMG Reports?

TMG Reports – New Security Insights

Secure Relay Full featured SMTP hygiene Integrated with Forefront Security for Exchange Anti-malware Anti-spam Anti-phishing Also supports generic SMTP mail servers Requires Exchange Server installation or media

Intrusion Prevention System Forefront Network Inspection System (NIS) Closing the vulnerability window between vulnerability announcement and patch deployment Signatures distribution by Microsoft Update Concurrent with security patches or in response to a 0-Day attack Security assessments and responses (SAS) 0-Day detection and response Behavior based Security Assessments Automated responses

Using NIS for IPS Detect and prevent known vulnerability-based attack attempts at the Edge of the network or in datacenter Same day availability of the patch and NIS signature Closes the vulnerability window which is needed for patch testing\deployment: Patches need to be tested more thoroughly Customer acceptance (similar to AV updates) 17 Vulnerability found Signature authoring team TMG

Intrusion Prevention System Alan Schmarr Consultant BUI

TMG: Network Inspection System 19

TMG – Stirling Integration

TMG Analytics Honey pot GAPA Signature Hit Spam Detection Click Fraud Bot Access Horizontal Scan Vertical Scan Vulnerability Scan Outbound Bandwidth Failed HTTP Request Denied Connections

Analctics in Action

Summary Call-to-action Test and deploy our upcoming Beta! Join Stirling private beta program through More than next generation firewall: full featured Threat Management solution Multiple Threat Protection: Scan, detect and mitigate malware threats Secure Connectivity: Publishing, VPN and forward proxy Integrated Security Management: Simple deployment and dynamic response integration with Stirling product suite

International Content & Community Resources for IT Professionals Resources for Developers Microsoft Certification & Training Resources Resources Required Slide Speakers, TechEd 2009 is not producing a DVD. Please announce that attendees can access session recordings from Tech-Ed website. These will only be available after the event. Required Slide Speakers, TechEd 2009 is not producing a DVD. Please announce that attendees can access session recordings from Tech-Ed website. These will only be available after the event. Tech ·Ed Africa 2009 sessions will be made available for download the week after the event from:

Track Resources ISA/TMG Product Team Blog:

Required Slide Complete a session evaluation and enter to win! 10 pairs of MP3 sunglasses to be won

© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.