none
DirectAccess 2012R2 - Web Filtering RRS feed

  • Question

  • I have a need to do web filtering (I think). What I have is an external web site (not Corpnet) that can only be accessed from a Corpnet IP address range. Based on this When I go to that web site Split Tunneling sends the traffic down the client side ISP, and not down the Corpnet side.  Since the web site will only allow connects from certain IP address ranges I need that traffic to go down the Corpnet route.  I would like to keep  Split Tunneling turned on.  I did find this article (http://www.concurrency.com/infrastructure/web-filtering-for-directaccess-users-55/), but it deals with TMG and I'm not sure how to move that over to Window 2012 R2 DA.  Can someone help me with this?

    Thanks,

    Ken ...


    Ken Lutz - Spokane County

    Wednesday, January 21, 2015 8:38 PM

All replies

  • Hello,

    You can try a specific Naming Resolution Policy in an additional GPO for your DirectAccess client based on the FQDN of you website.

    This will add the website into the NRPT tables and when your client will try to connect to it, the request will be sent to the DirectAccess infrastructure instead of the ISP.

    Gerald

    Friday, January 23, 2015 9:10 AM