This article provides relevant information regarding the changes that take place within Microsoft's Forefront TMG (Threat Management Gateway) during the GFI WebMonitor installation.
GFI WebMonitor implements the following changes within the Microsoft Forefront TMG configuration:
- The WebMonitor update server's URL Set is added and
http://*.gfi.comis configured in the WebMonitor update server's URL Set. This URL Set is used by the GFI WebMonitor Updates Access Firewall Policy.
- GFI WebMonitor Updates Access Firewall Policy is added. The GFI WebMonitor Updates Access Firewall Policy is configured to allow access from the Local Host to the URLs included in the WebMonitor update server's URL Set. This Firewall Policy applies to all users by default.
This Firewall Policy allows GFI WebMonitor to download anti-virus, anti-phishing, and WebGrade database updates from the GFI website.
- GFI WebMonitor GUI Access Firewall Policy is added. The GFI WebMonitor GUI Access Firewall Policy allows HTTP and HTTPS access from the internal network and the Local Host to the Local Host.
This Firewall Policy is used to allow the administrator to access the GFI WebMonitor Console.
Note: The uninstallation of GFI WebMonitor does not revoke the changes automatically. The modifications described in this article are retained in the TMG in case the GFI WebMonitor is reinstalled. The URL Set and the Firewall Policies need to be removed manually if the installation of GFI WebMonitor is no longer required.