locked
Intermittant Direct Access Issue RRS feed

  • Question

  • We have a weird problem. When some people connect to Direct Access externally they don't have access to certain servers, although other people will have access. The next time they log their access may return, but not always. There doesn't seem to be any errors in any logs, just the inability to connect to these servers. One of the Servers is the new Exchange server, so sometimes they can connect to Outlook over Direct Access and sometime they can't.

    The servers are pingable but we are unable to reach them via windows explorer. 

    Any help much appreciated.

    Wednesday, December 12, 2012 9:53 AM

All replies

  • That sounds like a common problem with the difference between connecting over Teredo vs. IP-HTTPS; the solution there is to ensure that internal servers can respond to IPv4/IPv6 ICMP which is required by Teredo.

    I would try forcing different transition technologies on the clients (disabling them in turn and testing) or getting a DCA diag dump when the problems occur to try and see if there is a connection-type issue/pattern first.

    Are you running Windows SP1 on the clients?

    Cheers
    JJ


    Jason Jones | Microsoft MVP | Silversands Ltd | My Blogs: http://blog.msedge.org.uk and http://blog.msfirewall.org.uk

    Wednesday, December 12, 2012 1:16 PM
  • Thanks Jason

    We are using Windows 7 Enterprise SP1.  We have turned the windows server 2008 firewalls off on the affected servers, so all traffic should be allowed through.

    We can ping the ipv4 and ipv6 addresses.

    will try to get a DCA Diag Dump. 

    Thursday, January 17, 2013 11:00 AM
  • This could be a replication issue with the domain controllers. Look for event ID 1014. If there are DCs that are experiencing replication issues, remove them from DA configuration. Also, look for invalid forwarders on your DNS servers. Hope this helps.

    Raj

    Wednesday, March 27, 2013 6:53 PM