FpcVpnQuarantineMode enumeration

Applies to: desktop apps only

The FpcVpnQuarantineMode enumerated type contains values that specify whether the virtual private network (VPN) quarantine is enabled or disabled, and whether VPN clients are placed in quarantine according to the Forefront TMG policy or the RADIUS server policy.


typedef enum FpcVpnQuarantineMode { 
  fpcVpnQuarantineDisabled                 = 0,
  fpcVpnQuarantineEnabled                  = 1,
  fpcVpnQuarantineEnabledWithRadiusPolicy  = 2
} FpcVpnQuarantineMode;


  • fpcVpnQuarantineDisabled
    The VPN quarantine is disabled. With this option, Forefront TMG adds new VPN clients to the VPN Clients network without placing them in quarantine and then applies the policy defined for that network to the clients.

  • fpcVpnQuarantineEnabled
    The VPN quarantine is enabled and is subject to the Forefront TMG policy. With this option, Routing and Remote Access should be configured to unconditionally pass requests from VPN clients to Forefront TMG. Forefront TMG then places each new VPN client in the Quarantined VPN Clients network. When a VPN client clears quarantine, Forefront TMG moves it into the VPN Clients network, subjecting it to the policy defined for that network.

  • fpcVpnQuarantineEnabledWithRadiusPolicy
    The VPN quarantine is enabled and is subject to the RADIUS server policy. With this option, the Routing and Remote Access policy determines whether a request from a VPN client should be passed to Forefront TMG and whether Forefront TMG should place the VPN client in the Quarantined VPN Clients network before allowing it into the VPN Clients network.


Minimum supported client

Windows Vista

Minimum supported server

Windows Server 2008 R2, Windows Server 2008 with SP2 (64-bit only)


Forefront Threat Management Gateway (TMG) 2010



See also

Enumerated Types



Build date: 7/12/2010