• Why Do I Need Two IP Addresses on the External Interface of the UAG DirectAccess Server?

    This question comes up frequently when introducing admins to UAG DirectAccess. It makes sense, since public IPv4 addresses are getting more difficult to come by and in fact it’s predicted that there will be an exhaustion of the entire IPv4 address space...
  • How To Enable SSTP (Secure Socket Tunneling Protocol) Split Tunneling with UAG 2010

    UAG 2010 (UAG) supports two types of network level SSL VPN: Network Connector Secure Socket Tunneling Protocol (SSTP) Network Connector is aimed at legacy clients and SSTP for Windows 7 clients. Network Connector supports both split and non-split tunneling...
  • Some 3G Connections May Not Enable DirectAccess Always-On Connectivity

    DirectAccess is about being “always-on”. When I start my laptop in the morning, I’m ready to get to work. Even though I don’t work on the Microsoft campus, I’m able to connect to anything I want (that I have permissions to connect to) on the Microsoft...
  • UAG DirectAccess–Guess the Device in the Request/Response Path

    Take a look at the figures below and see if you can guess what device is in the request/response path that you don’t typically see a UAG DirectAccess deployment. First, the ipconfig output on a DirectAccess client located behind a NAT device: Figure 1...
  • Certificate Related Questions and Test Lab Guide Guidance

    A couple of good questions were asked on a recent blog post and I figured it was worthwhile to answer them in more detail in a separate post. ==================================== “Can you clarify a couple points related to Certificate Authorities and...