Replacing Microsoft Threat Management Gateway (TMG)

By Hank Smith
Posted in Infrastructure
On January 02, 2015

Many customers that are using Microsoft Threat Management Gateway (TMG) already know that Microsoft will not be releasing any new versions or updates (minus security updates). While TMG is still supported (extended) by Microsoft until 2020, there are other options out there that should be considered.

Recently Gotham worked with a customer to replace the TMG environment that was front-ending their global SharePoint solution with a NetScaler MPX 5500 solution to provide the following:

  • Authentication page for SharePoint access
  • Load balancing of the SharePoint servers
  • Global server load balancing of the SharePoint servers
  • SSL offload

Gotham created a customer authentication page that mirrored the TMG authentication page. Based on NetScaler AAA policies, users are directed to their specific SharePoint site. Gotham also added the global server load balancing feature for SharePoint servers and imported all certificates so that the NetScaler could provide SSL offload.

The NetScaler solution was thoroughly tested prior to cut over, which consisted of scripts that update the NetScaler solution with the production IP addresses so that there no network changes involved at the firewall level.

In summary, the Citrix NetScaler solution can be used for many different features that are outside of the core Citrix solution (XenApp, XenDesktop, etc.). Contact your Gotham account manager for further details.

Hank Smith

Hank Smith

Hank is an expert in the design, development, and delivery of cost-effective, high-performance technology solutions. As manager of Gotham’s Virtualization practice, Hank builds motivated, productive teams for Gotham’s large-scale networking and infrastructure engagements, develops implementation standards and methodologies around virtualization technologies, and manages overall design and implementation of multiple infrastructure projects.