Microsoft DirectAccess Best Practices and Troubleshooting
About the Author
About the Reviewers
DirectAccess Server Best Practices
Preparing your Remote Access servers for DirectAccess
MAC address spoofing for virtual machines
Adding static routes
Hostname and domain membership
Time for certificates
Adding the roles
Don't use the Getting Started Wizard!
Security hardening the server
DirectAccess Environmental Best Practices
To NAT or not to NAT?
Planning for Certificates (PKI)
Defining your GPOs and security groups
Setting up the Network Location Server (NLS)
Do I need IPv6 or ISATAP?
Teredo and 6to4 tips and tricks
Configuring Manage Out to DirectAccess Clients
Pulls versus pushes
What does Manage Out have to do with IPv6?
Creating a selective ISATAP environment
Setting up client-side firewall rules
RDP to a DirectAccess client
No ISATAP with multisite DirectAccess
General DirectAccess Troubleshooting
Remote Access Management Console
Windows Firewall with Advanced Security
Reading the client logfiles
What happened to Teredo?
Clients with native IPv6
Unique DirectAccess Troubleshooting Scenarios
What happens when NLS is offline?
I enabled NLB and DA broke!
IPv4 applications don't connect over DA
Cannot contact some servers