Our company has several hardware VPN tunnels to customer networks. Prior to deploying DirectAccess we used Cisco AnyConnect - and its route injection feature, to 'force' traffic destined for customer networks up the AnyConnect tunnel when a user was working remotely.
Users typically have HOSTS file entries to resolve the customer resources in place on their machines.
I'm trying to achieve the same type of scenario but with DA, instead of the AnyConnect software client. I've seen mixed results when attempting this. Anyone else have experience getting this to work?
Two-nic DA deployment (one nic directly on internet, consecutive IPv4 addresses...and one nic in DMZ). Configuring the customer tunnels to allow the Direct Access server itself isn't a problem - it's getting a DA client to actually send the interesting traffic up the DA tunnel that is proving hard to achieve.
Forced tunneling really isn't an option for me on the DA side.
Thanks in advance for any suggestions or comments.