Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Monday, November 5, 2018 5:57 PM
Hey Guys,
I do have a AlwaysON VPN Configuration, where alle clients connecting to the VPN by Logon should use the DNS domains for several services, e.g. Outlook Anywhere, or other Web-Services. The point is, that it seems that the NRPT-Policies, created by the VPN-Profile are not used. In the Get-DNSClientNRPTPolicy -effective table, the different domains for the internal DNS-Domain and my other Domain are listed with their DNS-Servers, but if i ping the service, which is reachable externally as well, i do get back the external IP.
How do I configure the NRPT behaviour with powershell VPN-Profiles or is there a known issue with nrpt and always on VPN?
regards
stoeps
All replies (5)
Tuesday, November 6, 2018 7:01 AM
Hi,
Please refer to the link below for more information:
Best regards,
Travis
Please remember to mark the replies as an answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected]
Thursday, November 8, 2018 5:53 PM | 1 vote
Was this client migrated from DirectAccess to Always On VPN? I'm curious because someone brought to my attention recently a conflict that can be caused by existing NRPT policy rules (typically from DirectAccess).
Richard M. Hicks
Microsoft Cloud & Datacenter MVP
Founder and Principal Consultant - Richard M. Hicks Consulting, Inc.
directaccess.richardicks.com
Friday, November 9, 2018 4:31 PM
Hey, it was done, like you described in your article. with the additional domains as a additional <DomainNameInformation>
It was a clean install from scratch.
I do have the rules and policies in get-dnsclientnrpt... but no service can be reached by ping or even name resolution.
Monday, November 12, 2018 1:47 PM
no new Ideas?
regards
Tuesday, November 13, 2018 8:12 AM
Hi,
I am sorry that this issue still hasn't been resolved. I am not very familiar with the new feature.
Richard Hicks is a master of this field, and he probably bring you good news.
Best regards,
Travis
Please remember to mark the replies as an answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected]