I’m looking at deploying Direct Access as a remote access
solution on Windows Server 2012 R2
-We don’t use IPv6 internally or externally.
-VMware 5.1 cluster hosting LAN virtual Machines
-We have a checkpoint firewall so most likely scenariowill be to NAT the Direct Access VM behind the firewall with a single LAN NIC - Anything we need to bear in mind when goingfor a single NIC topology vs 2 NIC or edge?
-Client are Windows 7 Enterprise - Which I guess rules out an ‘Easy deployment’with Kerberos authentication as I understand this a Windows 8 only feature?
- Two tier PKI already in place (off-line root CA andon-lineIssuing sub ordinate)
Currently reading through the deployment guides on Microsoftsite, but has anyone got real world experience of deploying Direct Access in asimilar configuration – Any tips, best practice etc. welcome!