1. What is application filtering and how does it protect the internal network?
    An application filter can access the data stream or datagram associated with a session within the firewall service. They can authenticate and check for viruses. It can scan DNS, FTP, H.323, RPC, SIP, SMTP, SOCKS, TFTP, Steaming mediaw and web proxy.
  2. What is link translation where do you use it and what is it used for?
    Link translation, translates internal website names into domain names that can be accessed externally. You use it on the reverse transparent proxy setup by TMG.
  3. what are the encryption protocols for vpn traffic?
    PPTP, IPsec, and L2TP
  4. What tmg templates would you use in different scenarios?
    • Edge firewall - a firewall that is between all internal networks and the internet
    • 3 leg perimeter - a seperator between the external, internal, and perimeter
    • back firewall - a firewall that seperates the perimeter and external networks from the internal
    • single network adapter - TMG can only be used as a proxy, web content cachew web publishing server or OWA/Active sync/RPC over http publisher
  5. what is split DNS and how do you configure it? why would you want to use it?
    Split DNS is a a DNS server that provides different DNS information based on the network the information was requested from. You would want to use it so that hackers have a harder time finding the internal IP addresses of the internal servers and so that you do not hand out wrong IP addresses to external DNS lookups or to VPN clients. You configure the split DNS in the forward lookup zone in the DNS server, by configuring a zone and dissallowing dynamic updates
  6. what is URL mapping and filtering?
    URL allows the administrator to enfore network access policy by implicity allowing or disallowing domains
  7. what is path redirection?
    This allows you to redirect a URL to another site.
  8. what is ssl tunneling?
    This is when SSL traffic is allowed to pass through the proxy server without decryption and inspection
  9. what is https inspection?
    https inspection is when the proxy server decrypts https traffic to prevent from viruses and hackers.
  10. what stage of network creation do you make the network usage policy?
    before you setup any part of the network
  11. when do you use a user set, content type, or domain set?
    ???? parts of a ip packet ???
  12. how do you block traffic from a specific application?
    Application filters.
  13. how do you secure (or encrypt) OWA traffic?
    Publishing exchange server with a certificate obtained from a certificate authority
  14. what can you do on a TMG computer with only one network card?
    TMG can only be used as a proxy, web content cachew web publishing server or OWA/Active sync/RPC over http publisher
  15. what set of firewall rules actually show how TMG actually work?
    ??? firewall access rules ???
  16. know about https inspection, how it works, what do you need to install it, what does it do?
    TMG acts like the client from the servers point of view, and acts like the server from the clients pooint of veiw. This allows it to decrypt the traffic and inspect it before passing it onto the client
  17. what are the general options in the http filter
    ??? Enable HTTP Filtering ???
  18. which ports are required if you are doing rcp over http?
    80 and 443
  19. how would you configure secure dns to allow secure net clients to access the internet?
    ??? allowing split dns over the VPN ???
  20. where do you setup SSL and certificates, given different situations?
    • you create a certificate authority and import a certificate into TMG by using the certificate import wizard
    • -needs more-
Card Set