Microsoft warns Direct Access on Windows 10 and 11 could be anything but

Re: Direct Access

I've never liked DA as a solution to the problem, but I don't see why VMs would make a difference.

Interesting - I have never used direct access, but found similar to you when trying out an "always connected" OpenVPN setup - it worked find on Linux machines moving between networks, but the windows ones I tested quite often managed to end up with no connectivity to anything until they were restarted, so that suggests it's more something inherent within Windows networking rather than the VPN per se. I had an idea at the back of my mind that MS used one of the BSD network stacks, although I can't find anything to support that, so maybe I made it up - anybody else able to advise on that?

Occasionally it fails to reconnect, but the end user impact is far less than the constant dicking around and inexplicable connect failures I get with Fortinet nodes - we have both.

Most of the TM time DA is just the Little Train than Can - chugs away in the background, day in, day out , doing it’s job.

Re: Not a VPN?

According to Wikipedia: "DirectAccess, also known as Unified Remote Access, is a VPN technology that provides intranet connectivity to client computers when they are connected to the Internet. Unlike many traditional VPN connections, which must be initiated and terminated by explicit user action, DirectAccess connections are designed to connect automatically as soon as the computer connects to the Internet."

So - it is a vpn, just not called one!

Re: FFS

Yeah, and worse that they obviously no longer give any more of a shit about their Server updates than they do the desktop updates. They used to at least try a little harder with the server updates, but I guess those days are gone. And if they actually did "try a little harder" on this server update, then it must have really been a mess to start with if this still managed to slip out.

"Do they ever check anything works properly any more?"

Nope, because back in 2014 Microsoft pretty much sacked all of their quality control and testing staff hence all the borked updates and subsequent update amendments/retractions, etc.

Re: FFS

"Do they ever check anything works properly any more?"

No.

Not seen it reported anywhere, but another current one is that the latest version of Outlook for Android doesn't work on some phones - opens for two or three seconds, then closes. Not found a solution as yet.

Re: So many bugs in Windows 11 22H2

Whereas Windows 10 22H2 seems largely fine - could be related to the fact that it has barely any changes from the previous release!

Re: So many bugs in Windows 11 22H2

One could argue that Windows 11 is itself a bug...

Re: So many bugs in Windows 11 22H2

My wife patched to 22H2 and I avoided it as 35 years working in IT has taught me that you never patch on the day a patch comes out because 95% of the time the patch always needs a patch to fix the patches and the underlying bugs. Same as you never, ever run GA unless you just want to play and not actually run it properly.

"Once bitten, twice shy."

Re: What's wrong with a VPN anyway?

We're an almost 99% pure MS shop and we do NOT use DA, we use a third-party VPN from a very well known enterprise network security corp simply to ensure that if someone hits MS in the infosec nadgers we don't lose our shirt as every hacker scumbag finds a way into our network. It's just plain, simple common sense to never put all your eggs in one basket.

Re: What's wrong with a VPN anyway?

Especially since OpenVPN, configured accordingly for such situations, can do this too.

That includes Windows AND Linux on the server side as well, I implemented both as servers.