Looking at implemneting DR for Forefront TMG 2010 Enterprise. This needs to be between two physical sites (same domain) both of which the TMG will be located inside a separate DMZ - theat is 2 x sites, 1 x domain, 2 x DMZ.
I believe using EMS (1 at each site for DR purposes), can set up an Enterprise EMS with two separate arrays ? But how is the synchronization managed between the TMGs in different DMZs ?
Other option is use DNS round-robin. If so, would it be best to use two separate stand-alone TMGs and sync manually the policies/rules, or again, set up an EMS or stand-alone array ?
Confused and any help welcomed - especially if any articles on best practice in this scenario.