I'm an administrator for a shipboard TMG 2010 server which acts as a proxy for client workstations to interact with a shipboard router (to acess external addresses). Our afloat LAN requires satellite communication so slow connections are normal and the current rule set is a bit of a mess in the organization department. Here is a synopsis of the setup:

• 58 Total rules
• ~1200 assets on our network
• Most traffic leaves the firewall on rules 33-36
• Server/Application specific rules are at the top of the list
• Low priority users towards the bottom half

The question is it worth reshuffling the high traffic rules higher up over our server specific rules or is it best left as is?

In other words will reordering the rules have a noticeable effect?

Thanks in advance for any assistance.

• Edited by James_Caspian Friday, June 12, 2015 4:28 AM Spell check

James,

As you know it requires less processing (compute power) if you move the rules that are used at the beginning.

I am working with TMG for quite some while. I have noticed that it only makes a noticable difference if you have a lot of concurrent Web Proxy and or SecureNAT Clients that generate a lot of network traffic. I can't tell you which exact amount, but it is best for you to decide if you have not that many workload.