Dears,
I have the below scenario:
1. Install two TMG servers in DMZ (workgroup) and configure high availability using hardware load balancer
2. Use one NIC (DMZ) on each TMG server
3. TMG servers will be acting as forward proxy servers and used as well for HTTPS inspection, URL filtering based on predefined block lists and for web caching.
4. TMG servers will be acting as Radius clients and Radius server will be installed on domain controllers
5. External DNS will be installed on both TMG servers and conditional forwarding to DCs will be used to resolve internal DNS zones. Also root hints will be used to resolve internet DNS names.
6. A server certificate from internal CA will be installed on both TMG servers for authentication and data encryption.
I am not that strong in TMG so please guide me on how to install and configure the setup above, most importantly points: 1, 3, 4, and 6.