The Beta 2 TMG firewall has a new feature that allows you to perform malware inspection so that you can block your users from downloading malware over the web. This is a great new feature because it’s built-in and you don’t have to worry about issues with third party filters.
However, you might not always want malware protection enabled. Maybe you have a security administrator or security analyst working on your site who needs to be able to download malware. If you use a global malware policy, that user will need to get in front of the TMG firewall. However, the TMG firewall has the ability to control malware settings on a per rule basis. This makes is possible for you to enforce malware policies globally while excepting some users from the policy.
Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer