Hi all,
I have set up direct access behind a NAT firewall on a single server with 1 NIC
The policy is deployed to the client, and it creates the IP-HTTPS tunnel
I can ping our DCs by IP, but not by FQDN.
Direct Access Connectivity verifier logs:
[03/09/2014 10:10:19]: In worker thread, going to start the tests.
[03/09/2014 10:10:19]: Running Network Interfaces tests.
[03/09/2014 10:10:19]: Ethernet (Microsoft Hyper-V Network Adapter): fe80::a12d:a28:471d:ec77%3;: 192.168.43.42/255.255.255.0;
[03/09/2014 10:10:19]: Default gateway found for Ethernet.
[03/09/2014 10:10:19]: iphttpsinterface (iphttpsinterface): fd08:222a:8136:1000:a124:1b15:14c4:28b6;: fd08:222a:8136:1000:ccd1:4751:3373:b4a2;: fe80::a124:1b15:14c4:28b6%7;
[03/09/2014 10:10:19]: No default gateway found for iphttpsinterface.
[03/09/2014 10:10:19]: Ethernet has configured the default gateway 192.168.43.1.
[03/09/2014 10:10:19]: Default gateway 192.168.43.1 for Ethernet replies on ICMP Echo requests, RTT is 3 msec.
[03/09/2014 10:10:19]: Received a response from the public DNS server (8.8.8.8), RTT is 65 msec.
[03/09/2014 10:10:19]: The public DNS Server (2001:4860:4860::8888) does not reply on ICMP Echo requests, the request or response is maybe filtered?
[03/09/2014 10:10:19]: Running Inside/Outside location tests.
[03/09/2014 10:10:19]: NLS is https://LUTCCDA1.LUTC.internal:62000/insideoutside.
[03/09/2014 10:10:19]: NLS is not reachable via HTTPS, the client computer is not connected to the corporate network (external) or the NLS is offline.
[03/09/2014 10:10:19]: NRPT contains 2 rules.
[03/09/2014 10:10:19]: Found (unique) DNS server: fd08:222a:8136:3333::1
[03/09/2014 10:10:19]: Send an ICMP message to check if the server is reachable.
[03/09/2014 10:10:20]: DNS server fd08:222a:8136:3333::1 is online, RTT is 394 msec.
[03/09/2014 10:10:20]: Running IP connectivity tests.
[03/09/2014 10:10:20]: The 6to4 interface is disabled.
[03/09/2014 10:10:20]: Teredo inferface status is offline.
[03/09/2014 10:10:20]: The configured DirectAccess Teredo server is win8.ipv6.microsoft.com..
[03/09/2014 10:10:20]: The IPHTTPS interface is operational.
[03/09/2014 10:10:20]: The IPHTTPS interface status is IPHTTPS interface active.
[03/09/2014 10:10:20]: IPHTTPS is used as IPv6 transition technology.
[03/09/2014 10:10:20]: The configured IPHTTPS URL is https://da.lincolnutc.co.uk:443.
[03/09/2014 10:10:20]: IPHTTPS has a single site configuration.
[03/09/2014 10:10:20]: IPHTTPS URL endpoint is: https://da.lincolnutc.co.uk:443.
[03/09/2014 10:10:20]: Successfully connected to endpoint https://da.lincolnutc.co.uk:443.
[03/09/2014 10:10:20]: No response received from LUTC.internal.
[03/09/2014 10:10:20]: Running Windows Firewall tests.
[03/09/2014 10:10:20]: The current profile of the Windows Firewall is Private.
[03/09/2014 10:10:20]: The Windows Firewall is enabled in the current profile Private.
[03/09/2014 10:10:20]: The outbound Windows Firewall rule Core Networking - Teredo (UDP-Out) is enabled.
[03/09/2014 10:10:20]: The outbound Windows Firewall rule Core Networking - IPHTTPS (TCP-Out) is enabled.
[03/09/2014 10:10:20]: Running certificate tests.
[03/09/2014 10:10:20]: Found 1 machine certificates on this client computer.
[03/09/2014 10:10:20]: Checking certificate [no subject] with the serial number [6A0000001AFCD3D0FFA1F2CB1B00000000001A].
[03/09/2014 10:10:20]: The certificate [6A0000001AFCD3D0FFA1F2CB1B00000000001A] contains the EKU Client Authentication.
[03/09/2014 10:10:20]: The trust chain for the certificate [6A0000001AFCD3D0FFA1F2CB1B00000000001A] was sucessfully verified.
[03/09/2014 10:10:20]: Running IPsec infrastructure tunnel tests.
[03/09/2014 10:10:20]: Failed to connect to domain sysvol share \\LUTC.internal\sysvol\LUTC.internal\Policies.
[03/09/2014 10:10:20]: Running IPsec intranet tunnel tests.
[03/09/2014 10:10:20]: Successfully reached fd08:222a:8136:1000::1, RTT is 73 msec.
[03/09/2014 10:10:21]: Successfully reached fd08:222a:8136:1000::2, RTT is 69 msec.
[03/09/2014 10:10:21]: Failed to connect to HTTP probe at http://directaccess-WebProbeHost.LUTC.internal.
[03/09/2014 10:10:21]: Running selected post-checks script.
[03/09/2014 10:10:21]: No post-checks script specified or the file does not exist.
[03/09/2014 10:10:21]: Finished running post-checks script.
[03/09/2014 10:10:21]: Finished running all tests.
Settings from DA Server
Pulling my hair out with this one...