is used when your client is behind a NAT device. Teredo packages the dataon UDP port 3544.
is also used behind a NAT device when Teredo is detected to beunavailable. IP-HTTPS packages the data in an SSL tunnel on port 443.
is used to provide IPv6 connectivity to ISATAP hosts across anIPv4 intranet using a NAT64 router (such as UAG).The settings that enable these transition technologies on the Windows 7 client are pushed byAD group policy as shown in
. When you enable DA on your UAG server, thegroup policies needed are automatically created in your domain and linked to the appropriatesecurity groups.
DirectAccess clients are assigned IPv6 transition technology settings by group policy.
Always-connected remote workers
This feature of the DA solution is often the reason organizations were first interested in DAtechnology at all. Many organizations have been seeking a way to replace dependence onlegacy Virtual Private Network (VPN) systems for remote workers. DA represents a validway to migrate beyond VPN technology for remote workers.DA achieves a seamless remote work experience that is unrivaled in the computer industrytoday. DA uses IPv6 transition technologies to provide an always-on, secure connection for remote users. DA leverages conventional Internet Protocol Security (IPSEC) policies for authentication and encryption, so there is no additional client software component.Basically, internal network resources remain available to a DA client computer under allconnection scenarios. If the computer has an Internet connection, it will be usable as if it wereon the local corporate network at all times. Mapped drive letters stay mapped and available.