All posts tagged enterprise mobility

Always On VPN Ask Me Anything (AMA) June 2023

It’s that time again! Have questions about Always On VPN? Are you having a specific issue you can’t figure out? Need information about configuration options? Here’s your chance to get your questions answered! Join me next week on Thursday, June 29, 2023, at 10:00 AM PDT (UTC -7) for an opportunity to ask me anything (AMA!) about Microsoft Windows Always On VPN and related technologies.

Missed out on this event? You can find the session recording on YouTube here.

The AMA will be an open forum session where we can all talk shop about Always On VPN. It’s a great chance to learn new things and share experiences with your peers. We’ll discuss known issues and limitations, best practices, and more.

Everyone is welcome. Don’t miss out on this excellent opportunity to connect and learn. Register today!

Can’t make the session? Register anyway and I’ll send you the link to the recording as soon as it is availalbe!

3 Comments
by Richard M. Hicks on June 19, 2023  •  Permalink
Posted in Always On VPN, AMA, AOVPN, enterprise mobility, InTune, MDM, MEM, MEMCM, Microsoft Endpoint Manager, Microsoft Intune, Mobile Device Management, Mobility, NPS, Operational Support, PKI, Remote Access, RRAS, Security, VPN, Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, Windows Server 2022, Workshop
Tagged , , , , , , , , , , , , , ,

Posted by Richard M. Hicks on June 19, 2023

https://directaccess.richardhicks.com/2023/06/19/always-on-vpn-ask-me-anything-ama-june-2023/

Always On VPN Ask Me Anything (AMA) March 2023

It’s that time again! Have questions about Always On VPN? Are you having a specific issue you can’t figure out? Need information about configuration options? Here’s your chance to get your questions answered! Join me next week on Thursday, March 23, 2023, at 10:00 AM PDT (UTC -7) for an opportunity to ask me anything (AMA!) about Microsoft Windows Always On VPN and related technologies.

The AMA will be an open forum session where we can all talk shop about Always On VPN. It’s a great chance to learn new things and share experiences with your peers. We’ll discuss known issues and limitations, best practices, and more.

Update: Missed the session? You can watch it here!

Everyone is welcome. Don’t miss out on this excellent opportunity to connect and learn. Register today!

Can’t make the session? Register anyway and I’ll send you the link to the recording as soon as it is availalbe!

3 Comments
by Richard M. Hicks on March 16, 2023  •  Permalink
Posted in Always On VPN, AMA, AOVPN, enterprise mobility, InTune, MDM, MEM, MEMCM, Microsoft Endpoint Manager, Microsoft Intune, Mobile Device Management, Mobility, NPS, Operational Support, PKI, Remote Access, RRAS, Security, VPN, Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, Windows Server 2022, Workshop
Tagged , , , , , , , , , , , , , ,

Posted by Richard M. Hicks on March 16, 2023

https://directaccess.richardhicks.com/2023/03/16/always-on-vpn-ask-me-anything-ama-march-2023/

Always On VPN RRAS and Stale Connections

Always On VPN Updates for RRAS and IKEv2

Always On VPN administrators may be familiar with an issue that affects Windows Server Routing and Remote Access Service (RRAS) servers, where many stale VPN connections appear in the list of active connections. The issue is most prevalent when using IKEv2, either for the Always On VPN device tunnel or the user tunnel. Typically, this does not cause problems, but some administrators have reported issues related to port exhaustion or failed IKEv2 connections when many stale connections are present. Stale connections happen so frequently that I created a PowerShell script to clean them up on the RRAS server. Restarting the RemoteAccess service or rebooting the server also clears stale connections.

Microsoft Fix

Thankfully, Microsoft has addressed these issues in Windows Server 2019 and Windows Server 2022 this month. An update is now available in the March 2023 security update that resolves this problem.

You can find more information about the updates here.

The update was not made available for Windows Server 2016, however. Organizations are encouraged to upgrade to Windows Server 2019 or later to address this problem.

Additional Information

Always On VPN Updates for RRAS and IKEv2

Always On VPN IKEv2 Load Balancing and NAT

Always On VPN and IKEv2 Fragmentation

Leave a comment
by Richard M. Hicks on March 14, 2023  •  Permalink
Posted in Always On VPN, device tunnel, Enterprise, enterprise mobility, GitHub, Hotfix, IKEv2, Infrastructure, Microsoft, Mobility, Operational Support, PowerShell, Remote Access, routing and remote access service, RRAS, troubleshooting, Update, user tunnel, VPN, Windows Server 2019, Windows Server 2022
Tagged , , , , , , , , , , , , , , , , , , , , , ,

Posted by Richard M. Hicks on March 14, 2023

https://directaccess.richardhicks.com/2023/03/14/always-on-vpn-rras-and-stale-connections/

« Older Posts
Newer Posts »
%d bloggers like this: