TMG Forefront 2010 Features Confirmation
Currently I am using Untangle (lite version) and I don't have any problem except two features that two main features like Active Directory connector & Bandwidth monitor is a paid module and it is expensive than TMG Forefront licenses. So was wondering instead of going for Untangle and if I go for TMG 2010. Is it really worth. Because in Untangle I lack following features.
1. Live bandwidth monitoring (Which IP or User is consuming more bandwidth and on what URL)
2. No Https filtering, either I have to block 443 but can't because of accounts dept. using banking websites (or) use openDNS to do https filtering.
3. No PPTP VPN feature
4. Again, Branding logo is always way too expensive if such feature is available in Forefront where i can design my own block page according to companies logo.
One last question is that if I can install TMG Forefront on my one of the server which is a part of the domain and Server 2008 Standard 32bit (as a domain computer and not Domain controller) ?
Will list more in case if I remember but for now I want confirmation on above. Thank you.
1. Live bandwidth monitoring (Which IP or User is consuming more bandwidth and on what URL)
2. No Https filtering, either I have to block 443 but can't because of accounts dept. using banking websites (or) use openDNS to do https filtering.
3. No PPTP VPN feature
4. Again, Branding logo is always way too expensive if such feature is available in Forefront where i can design my own block page according to companies logo.
One last question is that if I can install TMG Forefront on my one of the server which is a part of the domain and Server 2008 Standard 32bit (as a domain computer and not Domain controller) ?
Will list more in case if I remember but for now I want confirmation on above. Thank you.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Bandwidth monitoring is the main feature I am looking at more to meet my requirements. Do you have any screenshot or a any short clip how the interface looks like ?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
berger, what about the installation. Like I said, I am currently having one server 2008 but it is only running as a port of a domain (just domain user and not as DC) so can I go ahead and install the TMG in it ?
Yes you can as long as its not a DC.
ASKER
and regarding bssplitter, I am not looking for allocating bandwidth to per user but only monitoring how much the bandwidth is being consumed through on each IP.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
but fastvue is an add on which is a paid version. I am looking to pay for only TMG and no additional headaches to my management, I am sure they won't be investing when it comes to IT but also don't miss any chance to keep nagging me till their request is fulfilled.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yeah to be really honest I am not looking particularly for LIVE reports but at least in the end of the day I should be able to trace out the users or IP addresses which are consuming more bandwidth, watching online videos during working hours and block specific users with specific extension or url they visit to.
So I can have reports per "IP" traffic going on WAN interface. Right ?
I am sorry I am trying to clear my doubts because my management would make an investment and I am the responsible guy here.
So I can have reports per "IP" traffic going on WAN interface. Right ?
I am sorry I am trying to clear my doubts because my management would make an investment and I am the responsible guy here.
ASKER
Thanks all for multiple advices and it really helped me implementing and testing the forefront.
3. PPTP is available and very easy to setup
Yes, you can install it on a domain computer, but never on a DC. Mines on a 2008 R2 domain computer.