All,
I'm migrating our environment from UAG 2010 to DA 2012. I'm testing the configuration with a laptop that sits outside our perimeter on the same /24 as both the old and new DA servers. The old and new servers have their own two consecutive public addresses.
This machine has a freshly installed OS (8.1) - but I encountered the same problem before I reinstalled.
In both cases, I had the machine configured to us the UAG 2010 server via membership in the appropriate groups, verified that this worked, and then removed it from the UAG 2010 security groups for the clients, and added the machine to the designated security groups for DA 2012.
Problem 1) The new GPO configured everything, except that the gateway address for the old UAG 2010 server remains in the routing table. I can manually change that using netsh, but that approach doesn't scale at all. Is there a way with a GPO to fix this?
Problem 2) 6to4 isn't disabled on the client (because I'm testing, and using a public IP address on the client), but when I manually disable it with netsh, IP-HTTPS still shows as disabled. (IP-HTTPS isn't listed in ipconfig before disabling 6to4 either). How do I enable that?
Any thoughts on how to fix these problems would be appreciated.
Kurt