Overview

Introduction

Welcome to the Install and Configure Threat Management Software Practice Lab. In this module you will be provided with the instructions and devices needed to develop your hands-on skills.

Learning Outcomes

In this module, you will complete the following exercises:

  • Exercise 1 - Install Threat Management Gateway
  • Exercise 2 - Manage Firewall Policy and Intrusion Detection Settings

After completing this lab, you will be able to:

  • Perform a pre-installation of Threat Management Gateway
  • Configure a static IP address on the secondary network interface
  • Perform the installation of Threat Management Gateway
  • Configure Threat Management Gateway settings
  • Create a firewall policy to allow ping packets
  • Enable port scanning attack detection
  • Use a port-scanning attack tool to illustrate the scenario of an intrusion
  • Monitor port scanning attack in TMG alerts.

Exam Objectives

The following exam objectives are covered in this lab:

  • Understand application servers - threat management

Lab Duration

It will take approximately 45 minutes to complete this lab.

Exercise 1 - Install Forefront Threat Management Gateway 2010

Microsoft Forefront Threat Management Gateway (TMG) 2010 is a software-based edge security gateway. This product provides application-layer firewall, proxy services (forward and reverse proxy), web content caching and virtual private network capabilities for remote access and site to site connection.

Forefront TMG 2010 is typically deployed as an edge security web gateway and supports web protection capabilities such as URL filtering, malware scanning, intrusion detection, and outgoing Secure Sockets Layers inspection.

This software-based security gateway requires a server with two network interface cards, one connecting to the corporate network and other connecting to the public Internet. Forefront TMG 2010 requires Windows Server 2008 or 2008 R2 and does not support later versions of the server operating system. Microsoft announced that it would not further develop and add new features to this release of TMG, although Service Pack 2 is available to address bug fixes on this product.

Exercise 2 - Manage Firewall Policy and Intrusion Detection Settings

Forefront Threat Management Gateway 2010 applies a restrictive firewall policy when installed on a Windows Server 2008 computer. For this reason, you must create the important firewall policy to ensure uninterrupted access to essential network services that may be running on the server where TMG 2010 is installed.

In this exercise, you will create a basic firewall rule to allow ping packets to pass through the internal network interface of PLABDM01. You will then enable port scan detection in the intrusion detection feature of TMG 2010 and run a program called Superscan against the PLABDM01 to test the intrusion detection functionality of the software-based security gateway.

Comprehensive Learning

See the full benefits of our immersive learning experience with interactive courses and guided career paths.