Given what you already have, I don't think you'll see much value in adding a second layer.
Thanks, Brian Desmond [email protected] w - 312.625.1438 | c - 312.731.3132 From: Paul Hutchings [mailto:[email protected]] Sent: Saturday, October 08, 2011 12:17 PM To: NT System Admin Issues Subject: Using Forefront TMG to protect Exchange 2010? I wondered what peoples thoughts are on using TMG to proxy Exchange 2010 OWA/RPC/ActiveSync access? We already use a firewall that does SSL inspection and only allows access to the Exchange virtual directory URL's so I'm not entirely sure what benefits using TMG (solely for Exchange) would give us? If I understand correctly, the primary one seems to be that as you're authenticating to the TMG gateway, and if you don't authenticate you simply cannot throw exploit attempts at the IIS that's sitting on the Exchange boxes? Thanks, Paul ________________________________ MIRA Ltd Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered in England and Wales No. 402570 VAT Registration GB 100 1464 84 The contents of this e-mail are confidential and are solely for the use of the intended recipient. If you receive this e-mail in error, please delete it and notify us either by e-mail, telephone or fax. You should not copy, forward or otherwise disclose the content of the e-mail as this is prohibited. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
