Content Security 6.1 for Microsoft ISA or Forefront TMG Server

Content Security 6.1 for Microsoft ISA or TMG Server box picture

Content Security 6.1 for Microsoft ISA or Forefront TMG Server offers server based anti malware and content security scanning of web traffic passing through Microsoft ISA or Forefront Threat Management Gateway (TMG) Server. Content Security 6.1 is installed on Microsoft ISA or Forefront TMG Servers versions 2004/2006/2010 and requires no direct interaction with the end users, providing complete content security for the corporate web sphere.

Latest version: 6.1.1572.0, released on May 15th, 2010

Read release notes Download documentation Download istallation package  

Product Features  |   Platforms  |   Languages  |   Screenshots  |   Pricing

Supports virtualization on VMWare, VirtualBox, Microsoft Virtual Server 2005, Microsoft Hyper-V 2008
  • Protection from viruses, phishing attempts, malicious programs and other security threats built on top of Norman Virus Control Scanner Engine (NSE) developed by Norman Software Company (http://www.norman.com/). NSE is capable of searching viruses in memory, streams, macros, files and boot sectors on any mountable disk device. NSE is fully reentrant and provides excellent multi threaded scanning support and CPU scalability.
  • Ability to analyze, filter and block web sites, HTML pages and file downloads of various types (audio/video content, MP3s, executables, scripts) in HTTP traffic passing through Microsoft ISA or Forefront TMG server based on real type, name, MIME content type, charset (language) or transfer encoding of the downloaded object. Filtering modules utilize extremely fast matching algorithms with excellent performance and very low memory footprint.
  • Regular updates of Norman scanning engine and virus definition files. Updates use incremental technology to keep the size of the downloaded files as small as possible enabling fast and stable update process and saving the network bandwidth.
  • Ability to exclude any domain, web site, URL, IP address, IP address range, subnet or proxy client from the security scanning; ability to cache the 'infected' or 'prohibited' anti-malware scanning verdict to further reduce server load and unnecessary CPU consumption.
  • HTML pages, streams, downloaded files, dynamic and embedded HTTP content are scanned recursively. Depending on the configured options, the application can block access to dowloads and replace inappropriate or insecure content in virtually all downloaded types of HTTP traffic.
  • Excellent performance and memory footprint; scanning is mostly done in memory to reduce the high I/O disk usage and overall system performance degradation. This makes the application ideally suited for deployments in virtual environments such as VMWare, VirtualBox, Microsoft Windows Server Hyper-V 2008 or Microsoft Virtual Server 2005 R2.
  • Performance settings of the application may be further customized for different types of hardware servers (amount of RAM, speed, number of processors, etc.) minimizing impact on the corporate firewall/proxy servers.
  • Easily configurable application logs, Performance Monitor application counters and mapping of most critical application events to native Microsoft Windows event log system provide easy troubleshooting experience and exact information why and according to which security setting the HTML page or file download was blocked.