Avatar of IT Guy
IT Guy
Flag for United States of America asked on

Possible to change ports used by Direct Access VPN to ports that aren't as commonly blocked?

I just implemented Microsoft direct Access VPN within my Server 2016 network.

However, I am finding that I am not able to connect to this VPN from many places including public guest Wi-Fi networks. When trying to connect I get an error message saying that "The network connection between your computer and the VPN server could not be established because the remote server is not responding. This could be because one of the network devices (e.g. firewalls, NAT, routers, etc) between your computer and the remote server is not configured to allow VPN connections. Please contact your Administrator or your service provider to determine which device may be causing the problem."

So far I have only been able to successfullly connect to this Always On VPN network in around 15% of the places where I have tried connecting. Wheneve I am unable to connect I receive the error message mentioned above and shown in the screenshot. Otherwise everything works great as long as I am able to successfully connect.

So is it possible to change the ports that Direct Access VPN is using to more commonly used ports (such as 80 and 443) that won't be blocked and then using NAT or some other technique if necessary to convert these ports back to their original port numbers? The firewall that is being used in this network is a SonicWALL TZ600.

Always on VPN error
RoutersNetworkingVPNWindows 10Azure

Avatar of undefined
Last Comment
IT Guy

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Shaun Vermaak

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Cliff Galiher

Wait. Are you using DirectAccess? Or Always On VPN? Those are two VERY different technologies and it fundamentally matters to this question.
IT Guy

ASKER
You're right it is Always ON VPN that was implemented.

I have reposted this question here.
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes