what OS version do you run? If you put the DA server behind the NAT-firewall only the least efficient protocol (IP-HTTPS) can be used for DA. If you want use IPSEC or Teredo the DA server must have configured public IP addresses. Here the article listing the firewall ports. http://technet.microsoft.com/en-us/library/dd857262.aspx
Direct Access link collection - http://technet.microsoft.com/en-us/network/dd420463.aspx
From external, not from the Windows 8 client, can you verify what certificate is installed on the DA server?
e.g. open a web browser and go to https://URLofYourDAServer or use openssl s_client -connect URLofYourDAServer:443
- Proposed as answer by guruletz Friday, June 27, 2014 6:46 PM
I can assist you getting this working with Sonicwall firewall. On your firewall, you will need to allow HTTPS (port443) inbound to your DA server. I have done this a couple times and working like a charm. MS Direct Access server 2012 and Sonicwall NSA 2400 with port 443 open going to DA.
From your SonicWall NSA 2400, use the Wizard, choose Public Server>then Webserver> uncheck HTTP (TCP port 80) leaving HTTPS (TCP 443) checked, click next.
- Edited by Orvalt1 Saturday, January 04, 2014 11:27 PM