It may take 10-20 seconds before the first records are imported. You can watch the records count in Settings | Sources. Once records start importing, you can go to the Dashboard tab to see your live network traffic.
Now you can test out the many features of Fastvue Reporter.
Can I run Fastvue TMG Reporter on the Forefront TMG server?
Although it is technically possible to run TMG Reporter on the TMG server, we do not recommend it, especially in a production environment. Forefront TMG is a firewall, and it is not good practice to install other services and application as it increases the number of possible attack vectors. There can also be issues with port conflicts when running IIS on your TMG server as other applications and services such as Web Proxy Auto Discovery may also try to use port 80.
Fastvue TMG Reporter is also a resource-intensive service (by design) and if you run it on your Forefront TMG server, it may impact the performance of your Firewall and Proxy.
What is the Fastvue Arbiter?
The Fastvue Arbiter is an agent that runs on the TMG server. Its purpose is to access your logs and communicate with the Fastvue TMG Reporter server. At the moment it only works with TMG’s default SQL Express logs and W3C text logs (not TMG’s IIS logs, or separate SQL database). The Arbiter and Dashboard communicate on a specific port (49361) which you can add an explicit access rule for in TMG.
We developed the system this way to maintain the security integrity of your Forefront TMG server. The alternative is to either open file shares, or enable network access to TMG’s SQL Express database. Both of these options increase the attack surface of the Forefront TMG firewall. In consultation with TMG experts (such as Richard Hicks – tmgblog.richardhicks.com), we decided the best option is to create a small footprint agent to run on the Forefront TMG server that securely communicates with the Fastvue TMG Reporter server.
How does Fastvue TMG Reporter work?
Fastvue TMG Reporter consists of both a website (runs on Microsoft’s IIS Web Server) as well as a Windows service that runs constantly in the background importing and analyzing your Forefront TMG log files. When you install TMG Reporter, a web server (Microsoft IIS) will also be installed and configured. You can then browse to the website you specify during installation to monitor your network statistics and view alerts.
What does the ‘Anonymous’ user mean?
Forefront TMG will log ‘Anonymous’ for any unauthenticated traffic. Fastvue TMG Reporter is a great tool to help identify and reduce the amount of Unauthenticated traffic going through Forefront TMG. Hover over the Anonymous user and click ‘Run report on’. Then look at the Firewall Rules section of the Report to see the Access Rules allowing unauthenticated traffic. You can then switch these rules to ‘All Authenticated Users’ instead of ‘All Users’ in Forefront TMG. We have an article that further explains this here:
How do I secure the Fastvue TMG Reporter website?
You can restrict access to the Fastvue TMG Reporter site using Windows Authentication and Authorization rules in IIS. We have an article on how to do this here: How To Secure and Publish the Fastvue TMG Reporter Website
The Productivity Sections are Blank
If Forefront TMG’s URL Filtering is not enabled, all productivity sections in TMG Reporter will be blank. It is quite common for URL Filtering to become disabled after the 90 day trial of Forefront TMG, unless you enter a license key into URL Filtering subscription. To enable URL Filtering, see our article Productivity Sections are Blank.
TMG Reporter does not install
It has been reported that in some cases, the Fastvue TMG Reporter installation finishes prematurely and no website or virtual directory is created, and no files are installed. This is due to some pre-requisites in IIS not installing properly. To fix this issue, please see our article TMG Reporter does not install.
Something is not working, what should I do?
Visit our Support Portal. Here you can search our knowledge base and contact support.