none
Windows Server 2016 with DirectAccess - DMZ RRS feed

  • Question

  • Hello I have to setup a DirectAccess on Server 2016 it is an VM with VMware. So my question is: My VM will be in a DMZ with just on nic card is it wotking?
    Monday, October 16, 2017 6:52 PM

Answers

  • Putting the DirectAccess server in a perimeter/DMZ network with just a single network card is supported and will work, but it isn't recommended. It would be better to have two network interfaces, one in the LAN and the other in the DMZ. That would allow you to apply more restrictive Windows Firewall rules to reduce exposure of the DirectAccess server to untrusted networks. If you do use a single NIC, the DirectAccess server must have access to all internal domain services (AD, DNS, PKI, etc.) as well as any resources that will be accessed by DirectAccess clients. 

    Hope that helps!

    Tuesday, October 17, 2017 6:07 PM