Let’s start this post about Exchange with a common question: Now that Microsoft has stopped selling TMG, should I rip it out and find something else to publish Exchange with? I have occasionall...
Updated Jul 01, 2019
Version 2.0
Blog Post
@ UAG - because it's a choice. If you want the additional protection UAG offers, use UAG. If you don't feel you need it, don't.
@ Wow - I just did a quick Bing search for "<insert vendor name> hardened attack" and found multiple blog posts and technical details describing how they are hardened against attack.
@ Jetze - I certainly have invested time over the last few years writing documents on how to use TMG and UAG to protect Exchange, and the realization this post describes took me time to come to terms with too. I think TMG did an amazing job protecting Exchange, when it needed it. Some customers who still have it, still need it, and shouldn't rip it out, and that's my point to. It's a choice. An informed choice, not just a dumb 'put a firewall in front of it' situation any more.