what is TMG server publishing? when would you use that as opposed to server publishing and web publishing?
- web publishing: http servers, Mapping requests to specific internal paths, Delegation of user credentials, Link translation, SSL bridging, Load balancing
- server publishing: non-http servers
what would you use for baselining tmg servers?
how do you specify a group of people to only be allowed to use certain protocols?
user sets in the new access rule wizard
know what kind of things would be impacting SqL or text logging?
network consumption, log size limit, security, perfrmance, hstorical and offline viewing
what kind of scenario would you forward the original host header? what would be the problem if you didn't?
to a sharepoint server "this enables SharePoint to differentiate between external requests for which it provides translated links, and internal requests for which it provides internal links"
what logging types use the most and least resources?
- most - sql server database
- - sql server express
- least - file
what authentication types are available for a site to site vpn tunnel?
ikev2, EAP, mschapv2, chap, pap
what rule would you need to set up to allow web protocols to go through a site to site?
- pptp 1723
- l2tp 500
- sstp 443
what is the highest and lowest level of security, highest and lowest resouce useage for site to site vpn?
- security resources
- sstp moderate mid
- pptp moderate least
- l2tp high most
what are the traffic profile mappings for TMG?
Network mapping, application mapping, protocol mapping
what kind of CA would you use for bridging https from the perimeter?
"To satisfy this requirement you need to acquire a certificate and install it on TMG so that you can associate this certificate with the Web listener that will be used for the Web server publishing rule"
where are the certificates, which ones, and where do you install them to do https and ssl inspection?
- where - CA and TMG
- which ones - server, client, root, subordinate, standalone, domain
- "Two kinds of certificates are used in HTTPS (HTTP over SSL) authentication:
- Server certificates. This certificate contains information about the server that allows a client to identify the server before sharing sensitive information. Client certificates. This certificate contains personal information about the user and identifies the SSL client (the sender) to the server."
get an idea of what kind of information is provided by logs and reports vs session information?
- logs - any information in any packet, network information, computer information,rule
- session - current network information