Hi all,
i have configured a DirectAccess pilot with the following configuration:
- DirectAccess Server 2012 R2
- "external" interface connected to DMZ and NATted to external firewall
- internal interface connected to intranet
- Windows client 8.1 Enterprise on Surface Pro 3
A PKI with Enterprise subordinate CA was created and all the computer certificates issued. Once the configuration was finished, the client is updated with last GPOs and is able to determine its position. It pings to directaccess server and IPv6 intranet servers like DNS-DC using ip direction only.
However, when try to ping using dns namespace is not able to create the intranet and infrastructure tunnel. Is not able to resolve names neither. Using the Windows 8.1 DA Troubleshooter reveals problems pinging intranet DNS using namespace and is not able to create tunnels. No more specific info.
I hesitate with 2012 R2 configuration due to its supposed to use DNS64 and NAT64 so i´m not sure if further isatap configuration is necessary
Could anyone help?
Regards.