Configuring networks

This section provides information about creating networks and network rules.

Microsoft Forefront Threat Management Gateway networks represent your corporate network topology. Generally a network is defined for each network adapter installed and enabled on the computer. Networks that do not require associated network adapters are the Local Host network which represents the Forefront TMG computer, and VPN networks.

Whendeployed at the edge of your network Forefront TMG should be configured with at least two network adapters. One connected to the Forefront TMG Internal network that represents the main corporate network, and the other to the Forefront TMG External network that usually represents the Internet. The External network is defined dynamically based on the IP address ranges of other networks. You can configure the IP address range and other properties of the Internal network. If three or more adapters are available, you can also configure the properties of one or more perimeter networks. You can configure a dial-up connection on one network only. For example to dial up for Internet access.

After defining networks you create network rules to specifically allow networks to communicate.