Tip of the Day: Direct Access and IP-HTTPS

Today’s tip…

IP-HTTPS is now the preferred IPv6 transition technology for DirectAccess.

Direct Access allows clients to connect with various IPv6 transition technologies including Teredo, 6to4, and IP-HTTPS. In Windows Server 2008 R2, IP-HTTPS was the least preferred connection method because of performance reasons. Due to performance enhancements to the Direct Access implementation of IP-HTTPS in Server 2012, IP-HTTPS is now as fast as other connection methods. The most notable change to IP-HTTPS in Server 2012 is enabling Null Encryption for the HTTPS connection. Because there is an IPSec connection tunneled in the HTTPS tunnel, the data is still encrypted. This change prevents costly double encryption that happened previously.