What are the differences betwen AOVPN and normal windos2019 VPN

Orçun USTURALI 51 Reputation points
2020-09-11T12:11:53.517+00:00

we are on the edge a a project for a customer.

We first started with Microsoft Direct Access vpn , it was Ok ,but customer wanted to try Always on Vpn setup
It seems much harder then DirectAccess,
While i am struggling with those ,i wonder what is the difference between the AOVPN and the normal windows VPN ?

And also 1 more question ; ıt is a requirement to have 2 eth for the AOVPN RAS server, but the customer environment is just behind the firewall ,
Can AOVPN be established with only 1 ethernet adapter ??
(https://directaccess.richardhicks.com/2019/08/19/always-on-vpn-and-rras-with-single-nic/) the link says that it can be ??

Thanks a lot

Windows Server Infrastructure
Windows Server Infrastructure
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Infrastructure: A Microsoft solution area focused on providing organizations with a cloud solution that supports their real-world needs and meets evolving regulatory requirements.
513 questions
0 comments
Accepted answer
  1. Candy Luo 12,656 Reputation points Microsoft Vendor
    2020-09-14T05:54:41.173+00:00

    Hi ,

    Here’s a quick summary of some important aspects of VPN, DirectAccess, and Windows 10 Always On VPN.

    24299-image.png

    For more details about the difference, you can refer to the following article:

    What is the Difference Between DirectAccess and Always On VPN?

    Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.

    >>And also 1 more question ; ıt is a requirement to have 2 eth for the AOVPN RAS server, but the customer environment is just behind the firewall ,
    Can AOVPN be established with only 1 ethernet adapter ??

    Yes, you can.

    For VPN server Locations, there are three types:

    1. Edge Mode (VPN Server has 2 NICs, one NIC connected to the internal Network with private IP address, the second NIC is connected to the ISP connection using a public IP address)

    24386-image.png

    2.Behind NAT with 2 interfaces (VPN server has 2 NICs, one NIC connected to the internal network with private IP address, the second NIC is connected to a DMZ network with private IP address where VPN connections are received).

    24169-image.png

    3.Behind NAT with 1 interface (VPN server has only one NIC connected to the internal network with private IP address).

    24170-image.png

    The most common deployment used are: VPN server behind NAT with one interface or behind NAT with 2 interfaces.

    Hope this can help you understand better. If there is anything unclear, please feel free to let me know.

    Best Regards,

    Candy

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest