DirectAccess - Wikipedia

Contents

DirectAccess, besides known as Unified Remote Access, is a VPN-like technology that provides intranet connectivity to node computers when they are connected to the Internet. Unlike many traditional VPN connections, which must be initiated and terminated by explicit exploiter legal action, DirectAccess connections are designed to connect mechanically vitamin a soon as the calculator connects to the Internet. DirectAccess was introduced in Windows Server 2008 R2, providing this service to Windows 7 and Windows 8 “ Enterprise ” edition clients. In 2010, Microsoft Forefront Unified Access Gateway ( UAG ) was released, which simplifies [ 1 ] the deployment of DirectAccess for Windows 2008 R2, and includes extra components that make it easier to integrate without the necessitate to deploy IPv6 on the network, and with a dedicated drug user interface for the configuration and monitor. Some requirements and limitations that were contribution of the invention of DirectAccess with Windows Server 2008 R2 and UAG have been changed ( see requirements below ). While DirectAccess is based on Microsoft technology, third-party solutions exist for accessing inner UNIX and Linux servers through DirectAccess. With Windows Server 2012, DirectAccess is amply integrated into the operate system, providing a user interface to configure and native IPv6 and IPv4 support. [ 2 ]

engineering [edit ]

DirectAccess establishes IPsec tunnels from the customer to the DirectAccess server, and uses IPv6 to reach intranet resources or early DirectAccess clients. This engineering encapsulates the IPv6 traffic over IPv4 to be able to reach the intranet over the Internet, which still ( by and large ) relies on IPv4 traffic. All dealings to the intranet is encrypted using IPsec and encapsulated in IPv4 packets ( if a native IPv6 connection can not be established ), which means that in most cases, no shape of firewalls or proxies should be required. [ 3 ] A DirectAccess customer can use one of respective tunneling technologies, depending on the shape of the network the customer is connected to. The customer can use 6to4, Teredo tunnel, or IP-HTTPS, provided the server is configured correctly to be able to use them. For example, a client that is connected to the Internet directly will use 6to4, but if it is inside a NATed network, it will use Teredo alternatively. In addition, Windows Server 2012 provides two backward compatibility services DNS64 and NAT64, which allows DirectAccess clients to communicate with servers inside the corporate net even if those servers are merely able of IPv4 network. Due to the globally routable nature of IPv6, computers on the corporate net can besides initiate a connection to DirectAccess clients, which allows them to remotely manage ( Manage Out ) these clients at any prison term. [ 4 ]

Benefits [edit ]

DirectAccess can be deployed for multiple sites. It allows for a secure encrypted VPN. This is controlled through Group Policies which allows the administrator to maintain a batten net .

Requirements [edit ]

DirectAccess With Windows Server 2008 R2 or UAG requires :

Reading: DirectAccess – Wikipedia

One or more DirectAccess servers running Windows Server 2008 R2 with two network adapters: one that is connected directly to the Internet, and a second that is connected to the intranet.
On the DirectAccess server, at least two consecutive, public IPv4 addresses assigned to the network adapter that is connected to the Internet.
DirectAccess clients running Windows 7 “Ultimate” or “Enterprise” editions or Windows 8 “Enterprise” edition clients
At least one domain controller and Domain Name System (DNS) server running Windows Server 2008 SP2 or Windows Server 2008 R2.
Public key infrastructure (PKI) to issue computer certificates.

DirectAccess With Windows Server 2012 requires :

References [edit ]

source : https://aricantisp.com
Category : Accessories

engineering [edit ]

Benefits [edit ]

Requirements [edit ]

References [edit ]

Leave a Reply Cancel reply