A Deep Dive on the New Forefront Threat Management Gateway David B. CrossProduct Unit Manager

Microsoft Corporation • Session Code: SIA403

Donny RoseSenior Program Manager

Agenda

Forefront OverviewTMG Value PropositionFeature Drill Down

Web client protectionDeployment and ManagementIntrusion Prevention System

Call to Action

Business Ready SecurityHelp securely enable business by managing risk and empowering people

Highly Secure & Interoperable Platform

IdentityProtect everywhere,access anywhere

Integrate and extend security

across the enterprise

Simplify the security experience, manage compliance

Block

from:

EnableCost Value

Siloed Seamless

to:

Forefront TMG 2010

Comprehensive

Integrated Simplified

Microsoft

Forefront TMG 2010Protecting endpoints againstweb-based threats

Microsoft

Forefront TMG 2010

Web Client Protection

Email Protection

Network Intrusion Prevention (NIPS)

Network Policy Control (Firewall)

Remote Access (VPN, Secure Web Publishing)

Management

Anti-Malware Integrationdemo

Microsoft Confidential

• HTTP Anti-virus/spyware

• URL Filtering• HTTPS forward

inspection

Secure Web Access

• VoIP traversal (SIP)• Enhanced NAT• ISP Link Redundancy• SQL logging• Updated TMG Client

Firewall

• Exchange Edge/FSE integration

• Anti-Virus• Anti-spam

E-mail Protection

• Network Inspection System (NIS)

• Security Assessment and Response (SAS)

Intrusion Prevention

• NAP integration with VPN role

Remote Access

• Array Management• Scenario UI & Wizards• Change tracking• Enhanced reporting• W2K8, R2, 64-bit

Deployment & Management

• Update Center :• HTTP: AV+URL

Filtering• Email: AV+Anti-Spam• NIS signatures

Subscription Services

TMG Feature Drill Down

7

TMG Deployment Scenarios•Authenticating proxy with security•Web anti-malware and URL filtering•Inspection of HTTP and HTTPS traffic

Secure Web Gateway

•All-in-one solution for medium businesses and for branch offices•Firewall, Proxy, VPN, IPS, Email relay in a single box

Unified Threat Management (UTM)

•Dial-in VPN•Site to site VPN•Secure Web Publishing

Remote Access Gateway

•Anti Spam•Anti Virus•Email Filtering

Secure Email Relay

Deployment and Managementdemo

Microsoft Confidential

Secure Web Gateway Features• Download scanning of web pages• Integrated Microsoft anti-malware engine• Inspection settings per rule

Malware Inspection

• URL category sets and exclusions• Integrated with forward proxy• Integrated with Microsoft Reputation Services

URL Filtering

• URL filtering, malware scanning and IPS protection• TMG Client notification to end usersHTTPS Inspection

• New log fields with URL/Malware info• SQL Server Reporting Services• Customizable reports

Logging & Reporting

TMG Reports

URL Filteringdemo

Microsoft Confidential

• HTTP Anti-virus/spyware

• URL Filtering• HTTPS forward

inspection

Secure Web Access

• VoIP traversal (SIP)• Enhanced NAT• ISP Link Redundancy• SQL logging• Updated TMG Client

Firewall

• Exchange Edge/FPE integration

• Anti-virus• Anti-spam• Anti-phishing

E-mail Protection

• Network Inspection System (NIS)

Intrusion Prevention

• NAP integration with VPN role

• SSTP (SSL VPN)

Remote Access

• Array Management• Scenario UI & Wizards• Change tracking• Enhanced reporting• W2K8, R2 64-bit

Deployment & Management

• Update Center :• HTTP: AV+URL

Filtering• Email: AV+Anti-Spam• NIS signatures

Subscription Services

TMG Feature Drill Down

13

Network Inspection System (NIS)Closes the vulnerability window between vulnerability announcement and patch deployment

Signatures distribution by Microsoft Update

Concurrent with security patches or in response to a 0-Day attack

Granular control over deployed signatures

High accuracy via telemetry

Vulnerabilitydiscovered Microsoft Signature

Authoring Team

Intrusion Prevention Systemdemo

Microsoft Confidential

Falk SchmalInformation Officer

customerLausitzer Wasser GmbH

Company

Lausitzer Wasser GmbHMedium-sized companyIO-Rationalized

Public-private-partnership of Eurawasser & the City of CottbusEurawasser

one of Germany’s leading water and waste water service companiesPart of Suez-Group

Intentions to Change the IT

Replacing Linux-Systems reponsible for:Proxy (Squid)SMTP-Gateway (Sendmail)SPAM-Protection (Spam-Assassin)

WhyOne solution for all aspectsBetter virtualization storyReducing complexity & saving costs

TMG Advantages

Better control and security, byIntroducing Contentfiltering (URL-Filtering and Edge-A/V)Authenticating users against AD-groupsBetter monitoring & reporting

Fits perfectly into the management solution SCOM management packWSUS & Forefront

SummaryCall-to-action!

Test and evaluate the new release!More than next generation firewall: full featured Threat Management solutionMultiple Threat Protection:

Scan, detect and mitigate malware threats

Secure Connectivity:Publishing, VPN and forward proxy

Microsoft

Forefront TMG 2010Protecting endpoints againstweb-based threats

Microsoft

Forefront TMG 2010

question & answer

www.microsoft.com/teched

Sessions On-Demand & Community

http://microsoft.com/technet

Resources for IT Professionals

http://microsoft.com/msdn

Resources for Developers

www.microsoft.com/learning

Microsoft Certification & Training Resources

Resources

Complete an evaluation on CommNet and enter to win an Xbox 360 Elite!

© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS,

IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.