david b. cross product unit manager microsoft corporation session code: sia403 donny rose senior...
TRANSCRIPT
A Deep Dive on the New Forefront Threat Management Gateway David B. CrossProduct Unit Manager
Microsoft Corporation • Session Code: SIA403
Donny RoseSenior Program Manager
Agenda
Forefront OverviewTMG Value PropositionFeature Drill Down
Web client protectionDeployment and ManagementIntrusion Prevention System
Call to Action
Business Ready SecurityHelp securely enable business by managing risk and empowering people
Highly Secure & Interoperable Platform
IdentityProtect everywhere,access anywhere
Integrate and extend security
across the enterprise
Simplify the security experience, manage compliance
Block
from:
EnableCost Value
Siloed Seamless
to:
Forefront TMG 2010
Comprehensive
Integrated Simplified
Microsoft
Forefront TMG 2010Protecting endpoints againstweb-based threats
Microsoft
Forefront TMG 2010
Web Client Protection
Email Protection
Network Intrusion Prevention (NIPS)
Network Policy Control (Firewall)
Remote Access (VPN, Secure Web Publishing)
Management
Anti-Malware Integrationdemo
Microsoft Confidential
• HTTP Anti-virus/spyware
• URL Filtering• HTTPS forward
inspection
Secure Web Access
• VoIP traversal (SIP)• Enhanced NAT• ISP Link Redundancy• SQL logging• Updated TMG Client
Firewall
• Exchange Edge/FSE integration
• Anti-Virus• Anti-spam
E-mail Protection
• Network Inspection System (NIS)
• Security Assessment and Response (SAS)
Intrusion Prevention
• NAP integration with VPN role
Remote Access
• Array Management• Scenario UI & Wizards• Change tracking• Enhanced reporting• W2K8, R2, 64-bit
Deployment & Management
• Update Center :• HTTP: AV+URL
Filtering• Email: AV+Anti-Spam• NIS signatures
Subscription Services
TMG Feature Drill Down
7
TMG Deployment Scenarios•Authenticating proxy with security•Web anti-malware and URL filtering•Inspection of HTTP and HTTPS traffic
Secure Web Gateway
•All-in-one solution for medium businesses and for branch offices•Firewall, Proxy, VPN, IPS, Email relay in a single box
Unified Threat Management (UTM)
•Dial-in VPN•Site to site VPN•Secure Web Publishing
Remote Access Gateway
•Anti Spam•Anti Virus•Email Filtering
Secure Email Relay
Deployment and Managementdemo
Microsoft Confidential
Secure Web Gateway Features• Download scanning of web pages• Integrated Microsoft anti-malware engine• Inspection settings per rule
Malware Inspection
• URL category sets and exclusions• Integrated with forward proxy• Integrated with Microsoft Reputation Services
URL Filtering
• URL filtering, malware scanning and IPS protection• TMG Client notification to end usersHTTPS Inspection
• New log fields with URL/Malware info• SQL Server Reporting Services• Customizable reports
Logging & Reporting
TMG Reports
URL Filteringdemo
Microsoft Confidential
• HTTP Anti-virus/spyware
• URL Filtering• HTTPS forward
inspection
Secure Web Access
• VoIP traversal (SIP)• Enhanced NAT• ISP Link Redundancy• SQL logging• Updated TMG Client
Firewall
• Exchange Edge/FPE integration
• Anti-virus• Anti-spam• Anti-phishing
E-mail Protection
• Network Inspection System (NIS)
Intrusion Prevention
• NAP integration with VPN role
• SSTP (SSL VPN)
Remote Access
• Array Management• Scenario UI & Wizards• Change tracking• Enhanced reporting• W2K8, R2 64-bit
Deployment & Management
• Update Center :• HTTP: AV+URL
Filtering• Email: AV+Anti-Spam• NIS signatures
Subscription Services
TMG Feature Drill Down
13
Network Inspection System (NIS)Closes the vulnerability window between vulnerability announcement and patch deployment
Signatures distribution by Microsoft Update
Concurrent with security patches or in response to a 0-Day attack
Granular control over deployed signatures
High accuracy via telemetry
Vulnerabilitydiscovered Microsoft Signature
Authoring Team
Intrusion Prevention Systemdemo
Microsoft Confidential
Falk SchmalInformation Officer
customerLausitzer Wasser GmbH
Company
Lausitzer Wasser GmbHMedium-sized companyIO-Rationalized
Public-private-partnership of Eurawasser & the City of CottbusEurawasser
one of Germany’s leading water and waste water service companiesPart of Suez-Group
Intentions to Change the IT
Replacing Linux-Systems reponsible for:Proxy (Squid)SMTP-Gateway (Sendmail)SPAM-Protection (Spam-Assassin)
WhyOne solution for all aspectsBetter virtualization storyReducing complexity & saving costs
TMG Advantages
Better control and security, byIntroducing Contentfiltering (URL-Filtering and Edge-A/V)Authenticating users against AD-groupsBetter monitoring & reporting
Fits perfectly into the management solution SCOM management packWSUS & Forefront
SummaryCall-to-action!
Test and evaluate the new release!More than next generation firewall: full featured Threat Management solutionMultiple Threat Protection:
Scan, detect and mitigate malware threats
Secure Connectivity:Publishing, VPN and forward proxy
Microsoft
Forefront TMG 2010Protecting endpoints againstweb-based threats
Microsoft
Forefront TMG 2010
question & answer
www.microsoft.com/teched
Sessions On-Demand & Community
http://microsoft.com/technet
Resources for IT Professionals
http://microsoft.com/msdn
Resources for Developers
www.microsoft.com/learning
Microsoft Certification & Training Resources
Resources
Complete an evaluation on CommNet and enter to win an Xbox 360 Elite!
© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS,
IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.