Planning networks

This section provides information about planning and creating a Microsoft Forefront Threat Management Gateway networking model.

Following installation you modify predefined networks and create new ones. You configure Forefront TMG networks to model your corporate structure. Typically, a Forefront TMG network corresponds to a physical network, and it has a network adapter associated with it. A network definition includes all IP address ranges that can be reached from the adapter.

In addition to representing your topology, Forefront TMG networks can be used to specify source and destination in firewall policy rules that control how traffic is allowed, restricted and filtered between networks.

• For information about predefined networks, see About networks.
• To understand how Forefront TMG implements networks before modifying and creating networks, see Before creating networks.
• To learn about connecting networks using network rules, see About connecting networks.

Other types of network objects can also be used in rules. For example, IP address ranges, URL sets, and computer sets. For a complete list of these, see Network objects.