I have been trying to implement DirectAccess and have been unable to do so.
Server- 2012 domain joined with no NAT behind Cisco ASA firewall
LAN nic - no gateway - static routes - has DNS servers configured
DMZ nic - has gateway no DNS serversOn the Windows 8 client I see the DA connection but it always sits at connecting. It never has made a connection.
I have opened up the Cisco firewall (to test only and shut it back down) to allow all traffic to the DA Server. During that time i tried to ping the DA host name and was successful and then tried to connect. The only thing i saw in the logs was allow icmp from an ipv6 address and then from my external home ip address. I then saw an allow on a single tcp from my external home ip address to the DMZ ip address on 443. Then there were several more ICMP connections to the server from the same ipv6 address as before.
I read that the windows firewall must be enabled on the server so I uninstalled Symantec Endpoint Protection and enabled the windows firewall. I did the same with the Windows 8 laptop. I am still unable to make this connection.
Where do I start to troubleshoot this? Even with the Cisco wide open to the server it does not connect, so i am pretty sure that is not the issue unless it is coming back into the network but i would imagine that there are logs i can look at to determine that.
Thanks for any help you can lend. I have been tinkering with this on and off for months trying to get it implemented but keep coming up empty handed.