Configuring SSTP in a UAG Array Notes

Today, I spent most of my day validating documentation and configurations for publishing SSTP within a UAG Array. A few things you need to consider when working with UAG arrays is to make sure all nodes are at consistent patch levels. Below is a list of current patches necessary to get this working:

  • TMG KB980674 (An IPsec VPN site-to-site tunnel or a PPTP VPN site-to-site tunnel does not work if you enable integrated NLB on a TMG array
  • TMG KB2689195 (TMG SP2 Rollup 2)
  • TMG KB2555840 (TMG SP2)
  • UAG KB2585140 (UAG SP1 Update 1)

Reference the following TechNet articles related to the topic of this post:

Additionally, make sure your private managed network does not overlap with the address pools allocated for VPN clients.