PacktLib: Microsoft DirectAccess Best Practices and Troubleshooting

Microsoft DirectAccess Best Practices and Troubleshooting

Credits

Foreword

About the Author

About the Reviewers

www.PacktPub.com

Preface

DirectAccess Server Best Practices

Preparing your Remote Access servers for DirectAccess

NIC configuration

NIC binding

MAC address spoofing for virtual machines

Adding static routes

Hostname and domain membership

Time for certificates

Adding the roles

Don't use the Getting Started Wizard!

Security hardening the server

Summary

DirectAccess Environmental Best Practices

To NAT or not to NAT?

Planning for Certificates (PKI)

Defining your GPOs and security groups

Setting up the Network Location Server (NLS)

Do I need IPv6 or ISATAP?

Teredo and 6to4 tips and tricks

Summary

Configuring Manage Out to DirectAccess Clients

Pulls versus pushes

What does Manage Out have to do with IPv6?

Creating a selective ISATAP environment

Setting up client-side firewall rules

RDP to a DirectAccess client

No ISATAP with multisite DirectAccess

Summary

General DirectAccess Troubleshooting

Remote Access Management Console

Windows Firewall with Advanced Security

Reading the client logfiles

What happened to Teredo?

Clients with native IPv6

Summary

Unique DirectAccess Troubleshooting Scenarios

What happens when NLS is offline?

I enabled NLB and DA broke!

IPv4 applications don't connect over DA

Cannot contact some servers

Summary

Index