Your network contains an Active Directory domain named contoso.com. The domain
contains multiple sites. You plan to deploy Direct Access.
The network security policy states that when client computers connect to the corporate network from the Internet, all of the traffic destined for the Internet must be routed through the corporate n
etwork.
You need to recommend a solution for the planned DirectAccess deployment that meets the security policy requirement.
What should you include in the recommendation?
A. Set the ISATAP State to state enabled.
B. Enable split tunneling.
C. Set the I
SATAP State to state disabled.
D. Enable force tunneling.
Explanation:
You can configure DirectAccess clients to send all of their traffic through the tunnels to the
DirectAccess server with force tunneling. When force tunneling is configured
, DirectAccess clients that detect that they are on the Internet modify their IPv4 default route so that default route IPv4traffic is not sent. With the exception of local subnet traffic, all traffic sent by the
DirectAccess client is IPv6 traffic that goe
s through tunnels to the DirectAccess server.