Some Forefront TMG protection mechanisms use Microsoft product updates to keep protection definitions constantly updated. These include:
- E-mail antivirus and anti-spam protection.
For information, see Planning to protect
against e-mail threats.
- Malware inspection. For information, see
protect against malicious Web content.
- Network Inspection System (NIS). For
information, see Planning to protect
against known vulnerabilities.
Updated definition files are provided by Microsoft Update and are subject to licensing. For licensing information, see How to Buy (http://go.microsoft.com/fwlink/?LinkId=157421).
You can select to update definition files by either of the following methods:
- Microsoft Update—Updates that are released
through Microsoft Update are installed on the Forefront TMG
- Windows Server Update Services (WSUS)—For
Forefront TMG arrays, you can deploy WSUS in the network where
Forefront TMG is deployed. A single server downloads the updates
that are released through Microsoft Update, and distributes the
updates to all the Forefront TMG computers in the network. This is
the recommended update method for Forefront TMG arrays, because it
provides centralize management, and saves time and network
bandwidth. For more information, see Microsoft Windows Server Update Services 3.0 Overview
Note: You can select to use Microsoft Update if the update from WSUS fails.