UAG DirectAccess

nAppliance nUAG remote access appliance platform is a next generation, high-performance application access and security solution which unifies a Web application firewall, SSL VPN, endpoint security to enable secure application access, access control and content inspection for a wide variety of line-of-business applications.

This is a very common situation which people might face when deploying Microsoft DirectAccess technology. Before going into how to work around this we need to know why the applications which work in internal network would fail to work on DirectAccess connectivity.

Let’s go through few types of applications and the reasons why they might fail to connect

Client/Server Applications

DirectAccess was first introduced as a feature within Windows Server 2008 R2 and Windows 7 Client.  DirectAccess overcomes the limitations of traditional VPN connectivity by automatically establishing a bi-directional connection from client computers to the corporate network wherein users never have to manually establish a connection to the enterprise network.  The biggest advantage of DirectAccess is that IT administrators can manage remote computers outside the office just as they would manage machines connected insi

DirectAccess is a seamless way to connect to company resources without dialing or logging into any other server. The default configuration of the DirectAccess uses Kerberos and certificates to create IPsec tunnels for a secure connection. So, how does it work? Well, the user connects their Windows 7 machine to the internet and machine creates the first IPsec tunnel, called the “Infrastructure Tunnel,” with the DirectAccess server.

Every IT manager, when deciding on a strategy for deploying DirectAccess for their corporate users, has the following questions on their mind about IPv6:

As we have described in a previous blog post, Microsoft DirectAccess has many benefits over traditional VPN: http://www.nappliance.com/blog/nappliance-nuag-and-directaccess-better-together.

By now, most of us know what DirectAccess is. For those who don’t, Direct Access is a revolutionary VPN technology which was introduced in Windows Server 2008 R2. It provides seamless connectivity to corporate resources without requiring any dial-up or VPN. DirectAccess connectivity is based on IPsec, IPV6, and transition technologies like Teredo, 6to4, IP-HTTPS, and ISATAP.

Microsoft Threat Management Gateway 2010 brings a lot of new and enhanced features to edge network security. Ever since Microsoft started with Proxy Server 2.0, and then ISA Server, URL filtering has always been something which administrators have wanted.

Here's a colleaction of videos I created sometime back. It still applies to the UAG without SP1 (still in RC).

Part I

Part II

In our previous post at http://www.nappliance.com/blog/nappliance-nuag-and-directaccess-better-together we highlighted how UAG and DirectAccess are better together and the benefits of connecting through the DirectAccess.