I am at a stalled point in this Windows 2012 Remote Access (DirectAccess) server setup.
I have installed a 2 NIC Natted Windows 2012 server. Everything seems fine but my client cannot connect to intranet resources using FQDN. 6to4 IPs work when I use NAT64 prefix before the IPv4 address of my internal resources. That means that the IPSec
tunnels don't come up, with I can confirm, I have to MMSA in the Windows Firewall.
This would usually lead to certificates, but I have confirmed that they are OK on both the server and client. CRL can be reached from both inside and outside.
Client is trying to connect through IPHTTPS tunnel as it was the only protocol the network team would allow through (which is fine by me).
I went through the usual toubleshooting steps.. Certificates OK, GPO OK, Connectivity to DC from Server OK. Nothing of interest in event log.
Security log though shows a few interesting errors like this one:
Microsoft is conducting an online survey to understand your opinion of the Technet Web site. If you choose to participate, the online survey will be presented to you when you leave the Technet Web site.