Microsoft TMG Gateway and ISA Server 2006
Microsoft Forefront Threat Management Gateway (TMG) 2010 and Internet Security and Acceleration (ISA) Server 2006 are multi-layer firewalls, VPN, proxy, and Web cache platforms that increase network performance while improving the protection of small business and enterprise networks against internal and external attacks that exploit web and email vulnerabilities. Forefront TMG is built on the Intrusion Prevention System (IPS) architecture of ISA Server 2006, which is designed to make it easy and affordable for businesses to implement secure application publishing, efficient branch office gateways, and comprehensive web access protection.

Secure Application Publishing with Forefront TMG 2010 and ISA Server 2006 enables greater control over intranet resources, yet provides increased productivity by making them available to remote users. TMG 2010 and ISA Server 2006 help protect your corporate applications, services, and data across all network layers with stateful packet inspection, application-layer filtering and comprehensive publishing tools. As a Branch Office Gateway, TMG 2010 or ISA Server 2006 firewalls simplify administrator and user experiences through a unified firewall and VPN architecture, with web caching and bandwidth management, an optimized firewall and filtering engine, and extensive access control. Forefront TMG 2010 and ISA Server 2006 help provide Web Access Protection with a hybrid proxy-firewall architecture, granular policies, deep content inspection, plus comprehensive alerts and monitoring capabilities.

ISA Server 2006 has been replaced by Forefront Threat Management Gateway 2010 (TMG 2010), which is based on ISA Server 2006's architecture while providing a variety of enhanced features. Forefront TMG 2010 has in turn been discontinued by Microsoft, and the gateway security features offered by the product are typically handled by purpose-built hardware appliances from vendors such as Cisco, Barracuda, Check Point and WatchGuard. (See Cisco ASA firewalls with Firepower Services consulting.) Progent's firewall integration experts can help you manage and troubleshoot your ISA Server 2006 or Forefront TMG 2010 environment or assess the business value of migrating to a more current solution. If you decide an upgrade makes sense, Progent can help you plan and execute a smooth, cost-effective migration, test and tune your firewall deployment, provide custom webinar training to your support staff, and deliver ongoing remote consulting and support services.

ISA Server 2006 Architecture

Microsoft Exchange Server 2007 Consulting
The architecture of ISA Server 2006, detailed in the above illustration, provides a flexible platform for a secure web gateway, a single-box all-purpose intrusion protection system, a remote access gateway, or a secure email relay.
  1. The core firewall engine operates in efficient kernel mode and integrates with the TCP/IP stack.
  2. The policy engine retrieves ISA Server policies from the policy store, and enforces them both in kernel mode, as part of the firewall engine, and in user mode, where the Microsoft Firewall service performs advanced functions, such as user authentication.
  3. An application filter API allows included protocol filters and third-party protocol filters to provide advanced services that integrate with ISA Server. The SMTP filter is an example of such a protocol filter.
  4. The Web Proxy Filter processes HTTP requests and performs application filtering on these requests. A Web filter API allows third-party Web filters to plug into the Web Proxy Filter for more advanced HTTP processing.
Key Features of Microsoft TMG 2010 and ISA Server 2006
ISA Server 2006 offers a wealth of new features and benefits that provide more tightly integrated network security, easier management, higher performance, and better protection for business information and applications.

Integrated Security
Microsoft TMG 2010 and ISA Server 2006 offer tight security through integration with Microsoft applications and protocols such as Active Directory, Windows Internet Name Service (WINS), Dynamic Host Configuration Protocol (DHCP), Network Load Balancing (NLB), and VPN Quarantine. Improvements in this area allow your business to:

  • Increase security and deployment flexibility for Web application servers through enhanced multi-factor authentication (smart cards and one-time passwords), flexible integration with Active Directory (LDAP), and customizable forms-based authentication for almost any Web application and client device.
  • Easily integrate TMG 2010 or ISA Server with your existing authentication infrastructure through enhanced authentication delegation (including NTLM, Kerberos, and SecurID), and gain more access control with improved session management that detects non-user traffic through automatic idle-based time-outs.
  • Maintain secure branch office infrastructure using Background Intelligent Transfer Service (BITS) caching to accelerate the deployment of software updates and keep remote computers protected.
  • Help defend your network with Enhanced Flood Resiliency features for event handling and monitoring that provide better resistance to Denial of Service (DoS) and Distributed DoS attacks.
  • Mitigate the effects infected computers have on your network with enhanced worm resiliency through simplified client Internet Protocol (IP) alert pooling and connection quotas.
  • Enhance attack remediation through extensive alert triggers and responses to notify administrators of network problems promptly.
Easier Management
Total cost of ownership of application-layer security can be reduced significantly by TMG 2010 and ISA Server 2006 through simplified deployment and management, plus server consolidation. ISA Server 2006 saves your company money by allowing IT managers to:
  • Simplify the process of securely publishing Exchange, Windows SharePoint Services, and other Web servers with easy-to-use wizards for multiple sites, and enhanced certificate administration to avoid configuration errors.
  • Easily deploy farms of Web servers behind TMG 2010 or ISA Server 2006 using session-based and IP-based affinity with automatic out-of-service detection using Web Publishing Load Balancing.
  • Easily deploy and configure TMG 2010 or ISA Server 2006 computers in branch offices by using answer files on removable media for unattended installation, and with easy-to-use VPN wizards to streamline connectivity.
  • Manage remote TMG 2010 or ISA Server 2006 computers more effectively with faster propagation of enterprise policies, reduced server requirements, and low-bandwidth optimizations.
  • Provide enhanced resource control by log throttling and control of memory consumption and pending DNS queries.
  • Unify management and monitoring across your TMG 2010 or ISA Server 2006 infrastructure with the Management Pack for Microsoft Operations Manager, and use enterprise-level and array-level policies to streamline control of security and access rules across your organization.
Faster and More Secure Access
TMG 2010 and ISA Server 2006 offer secure and seamless user access to network resources with added speed achieved through caching. Deploying TMG 2010 or ISA Server 2006 can:
  • Enable a smoother user experience for published Web applications, document libraries, and content through single sign on and comprehensive link translation to help ensure secure and consistent access.
  • Improve Web page load times and reduce WAN costs for users in branch offices with HTTP traffic compression and caching.
  • Help ensure that the highest priority applications get precedence over other network traffic through Diffserv IP settings, providing better bandwidth utilization and response times for critical Web resources.
Innovative Features of Forefront Threat Management Gateway 2010
Microsoft's Forefront Threat Management Gateway 2010 offers a number of important features that make it an attractive alternative to ISA Server 2006. Top new features include:
  • 64-bit support for Windows Server 2008 R2 for improved performance, scalability, and reliability.
  • Web anti-malware protection through the inspection of inbound and outbound traffic and the ability to block encrypted folders.
  • The ability to inspect HTTPS sessions for encrypted malware or exploits.
  • Optional email security with Forefront Protection 2010 for Exchange.
  • Network Inspection System (NIS) for continually updated signature-based inspection of multiple network protocols.
  • Support for virtualization with Windows Hyper-V.
  • Internet Service Provider redundancy for high availability or load balancing.
  • Support for Secure Socket Tunneling Protocol (SSTP) and Network Access Protection (NAP) for improved VPN capability.
For a more detailed discussion of TMG 2010's enhancements over ISA Server 2006, see Progent's Forefront TMG 2010 consulting services.

How Progent's Microsoft-certified Consultants Can Help You with TMG 2010 and ISA Server 2006
Progent's certified firewall experts can assist you to maintain and troubleshoot a deployment of TMG 2010 or ISA Server 2006, and Progent can help you migrate efficiently to more current security platforms. Progent's CISM, CISSP, GIAC, and CISA-certified security engineers can show you how to create a complete security and compliance plan that adheres to industry best-practices for corporate-wide security policies. Progent can help you enhance your TMG 2010 environment by providing Exchange Server 2010 integration for protected email solutions and with Microsoft Operations Manager integration for network monitoring, automated warnings and remediation, and reports. Progent's team of Cisco CCIE-certified consultants can provide affordable online expertise for architecting and troubleshooting a secure network infrastructure with Cisco routers and switches.

If you have moved up to Windows Server 2008 R2 and to Microsoft's latest mission-critical platforms such as Exchange Server 2010 and SharePoint 2010, Progent can help you evaluate the costs and benefits of migrating to Forefront Threat Management Server 2010 from ISA Server 2006 to take advantage of TMG 2010's close integration with the current versions of Microsoft's mainstream applications.

Progent offers a range of cost-effective information technology services to fit your network environment and budget. Services available from Progent include emergency troubleshooting, high-end consulting, project management for major migrations and upgrades, onsite and remote support, Help Desk, and comprehensive IT outsourcing.

For more information about Progent's consulting and support services for ISA Server 2006, call 1-800-993-9400 or visit Contact Progent.

© 2002- 2019 Progent Corporation. All rights reserved.

More topics of interest:

An index of content::

Akron Migration Migrations for Akron, OH
Bakersfield Tech Support Bakersfield, CA Small Office Computer Consultants
BlackBerry BES Server Information Technology Management Top BlackBerry Internet Networking Consultants in San Jose Airport SJC
BlackBerry BES Server Small Business Network Consultant Charlotte BlackBerry Wireless Consulting Group
BlackBerry BES Server System Recovery BlackBerry BPS Server Recovery Petaluma, CA
BlackBerry BPS Consultancy Firm Migration Support Hamilton County Ohio
BlackBerry Email Technical Consultants BlackBerry Enterprise Server Computer Services
BlackBerry Smartphone Recovery Services Best BlackBerry Exchange Networking Companies in Tacoma
BlackBerry Software Small Office Network Consultants Duval County Florida BlackBerry BES Computer Outsourcing Consultants
CISA Consultant Job Openings Positions for Microsoft Remote Engineer in Anchorage Dimond Center
CISSP Auditor Security Audit Services for Security
Chicago, Illinois Network Design Consultant Outsourcing Company for Chicago, IL
Cisco CCDP Network Consulting Freelance Jobs Cisco CCIE Storage Networking Network Support Work At Home Job
Cisco CCIE Voice Consultant Freelancing Job Cisco CCSP Network Support Remote Support Job Port of Mobile, Alabama
Cisco Help Cisco Consultants Charlotte, North Carolina
Cisco Integration Firms Cisco Computer Consultation in Atlanta Georgia
Cisco Online Support Computer Consulting Companies Portland, OR
Cisco Security Consulting Firms Cisco Network Support Consultants
Cisco and Microsoft Certified Expert Outsourcing Firm for Nashville, Tennessee Nashville, Tennessee Networking Company
Computer Companies for BlackBerry BES Server BlackBerry Software Network Services Anchorage, AK
Computer Consultant for Microsoft SharePoint Server 2007 Network Consultant for Microsoft SharePoint Server 2010
Computer Consultants Remote Support Services in Anchorage Muldoon Mall
Computer Consulting Freelance Jobs Network Consulting Full-Time Jobs in Sacramento - Rancho Cordova
Computer Consulting Group for Manhattan Beach, California Systems Support for Manhattan Beach, California
Computer Installation for Cisco Cisco Support Consultants Phoenix - Tempe - Mesa
Computer Specialist Hialeah Technical Consultants
Consulting Services for ISA 2006 Arnold, CA MCSE MCSA MCDBA MCIPT MCA Support Subcontractor Job
Consulting for Microsoft Exchange 2007 Exchange 2007 Integration Services
Consulting for SharePoint 2013 Excel Services SharePoint 2013 eDiscovery Center Computer Consulting
Cupertino Migration Consultants Small Business Computer Consulting for San Jose California
Dallas, TX Integration Company Dallas, TX Networking Consultancy Services
Design Consultants for Cisco Cisco Server Consulting
Desktop Consultant Contract Job Network Support Job Opportunities Foster City, CA
Engineer Tampa, Hillsborough County Microsoft Windows Server 2019 Technical Support Companies
Exchange 2003 Server Computer Consultant Exchange Security Consulting Firm
Exchange 2007 Small Office Network Consultants Las Vegas, NV Microsoft Exchange 2010 Network Consulting Group
Exchange 2016 Service Exchange Server 2010 Onsite and Remote Support Riverside County California
Exchange Configuration Services Network Engineer for Exchange 2003 Server
Exchange Network Consulting Services Exchange 2010 Server Information Technology Outsourcing Group in Cincinnati, OH
Exchange Network Outsource Exchange 2007 Tech in Denver Golden Triangle
Exchange Server 2010 Small Office IT Consultant San Jose - Sana Clara Exchange 2007 Integration Firm
Fedora Linux, Sun Solaris, UNIX Onsite Technical Support Red Hat Linux, Sun Solaris, UNIX Computer Consultants
Firewall Cybersecurity Companies Firewall Technical Support California - Los Angeles, CA, San Diego, CA, Long Beach, CA, Fresno, CA
Firewall Firewall Audit Firewall Evaluation Chicago O'Hare International ORD
Firewall Network Intrusion Penetration Testing Security Technology Consulting
Fort Wayne Solution Provider Fort Wayne Networking Company
Gentoo Linux, Sun Solaris, UNIX IT Consulting Consulting in Dallas
Houston, TX PC Consulting Houston, TX Server Install
Houston, Texas Computer Setup CISSP Certified Expert Houston, TX Information Technology Consultants
Huntington Beach, CA Migrations Huntington Beach, California Network Support
ISA 2006 Firewall Consultancy Point Reyes Station, CA Microsoft Exchange 2010 Computer Network Consultants Cleveland Public Square
ISA 2006 Firewall Specialist Albuquerque installation and Administration for Baton Rouge, Louisiana
ISA 2006 Firewall Technology Professional in Kent, WA Microsoft SQL Server 2016 Designers in San Diego
ISA 2006 IT Consultants South Lake Tahoe, CA UNIX IT Consulting
ISA Server 2006 Consultant Microsoft MCTS Remote Engineer Freelancing Job South Beach
ISA Server 2006 Online Consulting Dallas, TX Networking Small Business Network Consulting Services
IT Consultants for ISA Server 2006 Newark, CA Microsoft Experts Raleigh, NC IT Specialists
IT Consultants for SharePoint Server 2007 Microsoft SharePoint 2013 Online Troubleshooting in San Francisco Bay Area
Implementation Services for Monterey County Northern California Server Administration for Castroville
Implementation Support Microsoft SQL Server 2017 Migration Firm
Information Technology Installation Service BlackBerry Exchange Small Office IT Consultant
Integration Services for Microsoft Denali Microsoft SQL Server 2012 Remote Troubleshooting
Integration for Debian Linux, Solaris, UNIX Technology Consulting Services for CentOS Linux, Sun Solaris, UNIX Tulsa Green Country
Internet Networking Consultants for North Carolina - Charlotte, NC, Raleigh-Durham, NC, Greensboro, NC, Winston-Salem, NC Charlotte, NC, Raleigh-Durham, NC, Greensboro, NC, Winston-Salem, NC IT Consulting Firms
Internet Security and Acceleration Server 2006 Technology Consulting in Mill Valley, CA Maryland Consulting Services Company
Largest Microsoft ISA Server 2006 Online Support Montgomery Campbell Computer Consulting Group California
Lincoln, NE Information Technology Outsourcing Computer Outsourcing Consultant for Lincoln
Linux Support Services Technology Consulting for Redhat Virginia Beach, Virginia
Los Angeles, CA Microsoft Certified Expert ISA 2006 Firewall Consulting Services BlackBerry Exchange Upgrade in Miami-Dade County Florida
Louisiana IT Service Provider Louisiana IT Consulting Companies
Mac Penetration Testing Computer Consulting Consultant for Mac Spam Filtering
Maintenance for BlackBerry Redirector BlackBerry BES Server Small Business Network Consultants in Raleigh Durham Chapel Hill
Microsoft Exchange 2016 Tech Consultants Exchange 2007 Design Consultant
Microsoft GP/Great Plains Remote Troubleshooting Dynamics GP/Great Plains Network Consulting
Microsoft ISA Server 2006 IT Services Firewall Cybersecurity Organization
Microsoft ISA Server 2006 Remote Troubleshooting Microsoft SQL 2008 Technical Consultant in Garland Texas
Microsoft ISA Server 2006 Troubleshooting in Fremont, California Seattle, Spokane, Tacoma, WA Network Outsource
Microsoft SBS Premium Add-on Computer Engineer Technical Support Services
Microsoft SBS Premium Add-on IT Consultants Microsoft SBS 2011 Professionals
Microsoft SQL 2014 Security Consulting Firm Microsoft SQL 2008 Small Business Outsourcing IT in Honolulu, HI
Microsoft SQL 2014 Setup Microsoft SQL Server 2016 Small Business IT Outsourcing Firms Cupertino, CA
Microsoft SQL Server 2017 Computer Service Providers SQL Server 2016 Network Support Technician in New Orleans, Kenner
Microsoft SharePoint IT Consultants Microsoft SharePoint Server 2013 Information Technology Consulting in San Francisco California
Network Consultant for macOS and OS X macOS and OS X Online Consulting
Network Design and Configuration Cisco Network Administration
Network Security Consultants for Cisco Cisco Small Business Computer Consultants in Boston Cambridge
New York City, Buffalo, Rochester, Syracuse, Yonkers, Albany Small Office Network Consultant New York City, Buffalo, Rochester, NY Technical Services
Office 365 Yammer Integration IT Consultant Office 365 Hybrid Solutions Professionals
On-site and Remote Support for BlackBerry Email BlackBerry BPS Outsourcing Companies El Paso County Colorado
Onsite Technical Support for Windows 10 Business Store Portal Cisco and Microsoft Certified Consultant Services
Pacific Grove Computer Network Consultants Technical Support Organizations for Monterey California
Petaluma Microsoft ISA Server 2006 Network Engineer Work At Home Job for CISA Consulting
Phoenix, Arizona Consulting Services Company Network Consulting Services for Phoenix
Professional for Red Hat Linux, Sun Solaris, UNIX Award Winning Redhat Linux, Sun Solaris, UNIX Remote Support Minneapolis, MN
Progent Small Businesses Technical Support Organizations Progent Start-Up Business Networking Specialist
Remote Consulting for ISA 2006 Moraga, CA Napa Valley Computer Tech California
Repairing for Exchange Server 2010 Exchange Server 2013 Security Consulting Group
SCCM 2007 Device Management Remote Support Technology Consulting for SCCM 2007
SQL 2012 Small Business IT Outsourcing Firm SQL Server Computer Support Companies in Sacramento - Folsom
SQL 2012 Upgrading SQL 2012 IT Consultants
SQL Server 2012 Network Admin Companies Microsoft SQL 2008 IT Technical Support Company in Union City CA
San Francisco Technology Support Network Consulting Organization Northern California
Security Certification for Security Security Security Team
Security Consultant for Firewall Honolulu Hawaii Security Cybersecurity Group
Security Consultants for SQL Server 2012 Top Quality Network Consulting Firm for SQL Server 2016 San Francisco Bay Area
Security Consulting Security Team
Security Group for Security Technical Support Services
Security Security Organization Denver, Colorado Springs, Aurora, Fort Collins Cybersecurity Company
Server Integrators Pittsburgh Server Administration
Server Recovery for Anchorage Alaska Microsoft and Cisco Authorized Expert Alaska Online Consulting
Setup Consultancy Services for Cisco CCIE Online Technical Support in Amarillo, Randall County
Setup for Windows Server 2016 Windows Server 2016 Outsourcing IT Support
SharePoint Server On-site Technical Support SharePoint 2013 Support and Integration Akron
SharePoint Server Professionals SharePoint Server Online Support Services
Sherman Oaks Support Group Sherman Oaks, California Outsourcing Technical Support
Small Business Network Consulting Group for Windows 2008 Server Windows 2008 Server Computer Specialist Reseda
Small Business Server Support for Chesapeake, Virginia Consulting Organization
Small Office Computer Consulting Services for Dallas, TX Dallas Upgrade
Specialists Augusta-Richmond County, Georgia Microsoft MCITP Consulting Position in The valley
Stamford Network Consulting Company Stamford, Connecticut Implementation Services
System Recovery for Small Business Network Microsoft Windows Network Assessment Dayton
Systems Engineer for Southlake Southlake, TX Small Business Computer Consulting Group
Tampa, FL Microsoft Certified Expert ISA Server 2006 IT Consultant Auditor for CISSP in Denver International Airport
Tech Support For Small Business California Consultancies for San Jose
Technical Support Company for Minnesota Minnesota - Minneapolis, MN, Saint Paul, MN, Rochester, MN, Duluth, MN Computer Consultancy Firm
Technical Support in Spokane, WA Design Companies for Cisco
VMware SRM Consulting Professional
Windows 2008 Server Support Outsourcing Small Business Computer Consulting Firms for Windows Server 2012 R2 Fresno, CA
Windows Server 2012 Network Engineers Windows Server 2016 Network Support Consultants Minneapolis
Windows and Solaris Integration Services Solaris with Windows Consultants
Work From Home Job for MCSE Remote Engineer Microsoft MCP Engineer Home Based Virtual Office
Zero Downtime Branch office Connections Consulting Services CCDP Expert Certified Network Engineer