Denna kurs lyfter fram hur man kan och bör implementera Forefront TMG i ett företags nätverk samt de olika möjligheterna och funktionerna man har för att publicera olika tjänster och interna system.
Så som migrering från föregångaren ISA, publicering av Exchange eller Sharepoint lösningar eller design av redundans och lastbalansering.

Kursen riktar sig till tekniker och administratörer som har tidigare erfarenhet av att arbeta med Active Directory, Group Policies samt har en grundläggande förståelse för TCP/IP och nätverk.

Denna utbildning genomförs av MCT Jonas Blom,konsult på Relevo AB.

Audience:

This course is intended for Architects, Consultants, and Technical Sales Professionals involved in designing, deploying, or operating security solutions.

Objectives:

• Understand the new features and the value proposition for Forefront TMG.
• Explain how Forefront TMG protects clients and servers from Web-based threats.
• Describe how Forefront TMG enable outside systems to secure connect to internal services and applications.
• Describe how Forefront TMG integrates with Forefront Protection 2010 for Exchange and Microsoft Exchange Server 2010 to protect an organization from mail-based threats.
• Design an enterprise solution using Forefront TMG considering availability, scalability, operations, and migration from an existing Microsoft Internet Security and Acceleration (ISA) solution.

Course Outline:

Module 1: Forefront Threat Management Gateway (TMG) 2010 Overview

• Introduction to Forefront TMG
• Installation and Initial Setup
• Basic Configuration Concepts

Lab : Installing Forefront Threat Management Gateway 2010

• Install Forefront TMG on a Windows Server 2008 R2 server
• Perform an initial configuration of Forefront TMG using the Getting Started wizards

Module 2: Secure Web Gateway

• Secure Web Gateway Overview
• HTTPS Inspection
• URL Filtering
• Malware Protection
• Intrusion Prevention

Lab : Secure Web Gateway

• Create web access policies for Contoso users, including inspection of HTTPS sessions
• Modify web access policy to include protection from malware
• Investigate the Network Inspection System (NIS)

Module 3: Remote Access Gateway

• Remote Access Gateway Overview
• Non-HTTP Server Publishing
• Web Publishing
• Virtual Private Networking (VPN) Connectivity

Lab : Remote Access Gateway

• Use Web Publishing to publish Exchange Web Services

Module 4: Secure Mail Relay

• Secure Mail Relay Overview
• Solution Components
• Configuring SMTP Protection

Lab : Secure Mail Relay

• Install Active Directory LDS and Exchange Edge Server
• Install Forefront Protection 2010 for Exchange Server
• Install Forefront Threat Management Gateway
• Configure Exchange EdgeSync
• Define an E-mail Policy

Module 5: Forefront TMG 2010 Design and Deployment Considerations

• Logical Design Considerations
• Scalability and Availability
• Client Configuration
• Migration Options