Results 1 to 2 of 2

Thread: Always on VPN

  1. #1
    wesleyw77 is offline New Member
    Join Date
    Sep 2018

    Default Always on VPN


    I was wondering if I could get any help at all on Always on VPN, I've been reading several articles/'blogs about the technology and deploying it. From what I can see it revolves around 2 servers a VPN server in your DMZ (between Perimeter firewall and internal firewall) and an NPS server on your Corp network.

    This is where I get stuck as all the articles talk about auto-enrolment of certificates for the NPS and VPN servers but the VPN Servers aren't part of the corp domain and as such cannot be auto enrolled. So I have some questions if anyone could answer them that would be great.

    1. The VPN Server in the DMZ needs two Network Interfaces one for the Public facing Perimeter and 1 Internally to talk with the NPS server?
    2. We already have DirectAccess working fine does Always on VPN use different Certificates (It doesn't look like it) if so can I just use these for the Clients (Windows 10 PCs)?
    3. If I just create a 2 year Certificate for the VPN server and manually update it when it needs to be will that suffice instead of having it on the internal domain?
    4. Does anyone have a in depth guide available that could talk me through some of gotchas are sure to come up and a step by step how to at all?


  2. #2
    dmichaels is offline Beginner
    Join Date
    Oct 2018


    I think you must ask a professional VPN provider about your above mentioned questions. I don't know if any one here knows the answers to your queries, so it would be better if you can ask any vpn guy these questions he would guide you much precisely.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22