Hi all,
I'm a bit at my wisdom's end here, mainly because Direct Access is not my area of expertise...
My scenario: I want to access my lab at home from everywhere.
My solution: DirectAccess (RemoteDesktop Gateway worked, but I needed to open up RDP every time, which I didn't like)
My setup:
- 1 public IP (static)
- consumer router (Netcomm router NB604N)
- 1 Dell machine acting as server (Domain Controller for my lab and also DirectAccess server)
- all firewalls on all machines are enabled for all profiles
- I forwarded / NATed port 80, 443 and 62000 from my router to my DA server. Nothing else.
My client received all policies, as soon as I switch from my home WiFi to an external network the DirectAccess connection tries to connect, but never finishes.
I tried MS's DAClientTroubleshooter.exe and that one tells me that apparently all is fine until the client tries to connect to my domain's sysvol.
Do I have to NAT some more on my router? I heard something about a protocol that needs to be NATed?! I can't find anything else beside 80, 443 and 62000.
Anybody any idea how to get this working here? Sounds all very easy when you just read all the guides ;)
Cheers
David
My blog on ConfigMgr automation: www.david-obrien.net | me on Twitter: @david_obrien Please remember to mark the post(s) that helped you resolve the issue (even if it was your own)