We currently have a single Server 2012 R2 server and a handful of clients using Direct Access. Laptops running Windows 8.1 work fine but we have a few Windows 7 laptops where we are having network issues. Surprisingly, the problem isn't getting Direct Access to work. It's getting Windows to deactivate the IPHTTPS interface when the computer is back on the corporate network..
Direct Access knows that the computer is inside the corporate network and is disabled....
C:\WINDOWS\system32>netsh dnsclient show state
Name Resolution Policy Table Options
--------------------------------------------------------------------
Query Failure Behavior : Always fall back to LLMNR and NetBIOS
if the name does not exist
in DNS or
if the DNS servers are
unreachable
when on a private network
Query Resolution Behavior : Resolve only IPv6 addresses for names
Network Location Behavior : Let Network ID determine when Direct
Access settings are to
be used
Machine Location : Inside corporate network
Direct Access Settings : Configured and Disabled
DNSSEC Settings : Not Configured
And yet the IPHTTPS interface is still active.
Interface IPHTTPSInterface (Group Policy) Parameters
------------------------------------------------------------
Role : client
URL :
https://engr-da1.domain:443/IPHTTPS
Last Error Code : 0x0
Interface Status :
IPHTTPS interface active
This is causing problems when people try to access local websites with IE (Chrome and Firefox are fine). There is a huge delay before IE actually renders the page which I'm guessing is related to IPv6 and/or DNS. Once the IPHTTPS interface is disabled or is actually deactivated, everything is fine.
Thoughts?