I've been going at this for days jumping around the internet trying to find a solution. My clients will not connect to my direct access server. The server seems happy as it has all green lights. For me this seems to be incredibly hard to figure out. Here is what I have going on....
- I have 2 NICs on my DA server, Public name is da.domain.net, I'm using IP-HTTPS with a DA cert from the CA, I'm using a CA for authentication.
- A webserver running https://directaccess-nls.domain.net with a Cert from a CA for the network location server
- DNS is setup so my domain.net is using the DA IP for DNS (Directaccess-nls.domain.net is setup without an DNS Address)
- My server and client both have computer Certificates
I have done a gpupdate on my client on the domain and then take it off (looks like it recognizes the difference between on the domain and off.) When off the domain I connect my machine to a clearwire unit and Notice my DA connection is just sitting at connecting.....
It never establishes a connection. I ran the DA client troubleshooting tool and got this:
Interface Test - Green light
Network Location Test - Warning - DNS Server ******* does not reply on icmp echo request
IP connectivity Test - Red X - The IPHTTPS interface is not operation, last error code is 0x2af9
Windows Firewall - Green Light
Certificate Tests - Green Light
Infrastructure tunnel test - Red X - failed to connect to domain sysvol share
I basically just went through the wizard and got everything setup and beyond that haven't changed anything. I see alot of stuff online about getting into the group policy and making changes to the NLS rules and so forth but have not come across anything that looks like it will solve my issue. If anyone has information that would help me resolve this and get it working it would be so appreciated!
If I need more logs/information and I will be happy to post them!
Thanks,
Josh