I'm going to implement WAE (274, 474, 574, and 674) in inline mode at remote locations where the WAN devices are a server running Microsoft Firewall and VPN software. The Microsoft server functions as WAN firewall device and also VPN termination device.
Remote site: LAN switch ---- WAE (inline) ---- Microsoft Server (WAN firewall & VPN) ---- WAN cloud
Should I enable directed mode on the WAE? In using DM, the Microsoft Firewall will see the connection as a UDP instead of TCP. In that case, do I still need to disable Microsoft firewall's TCP options removal and enable it to allow shifted TCP sequence number?
Another question: how to configure Microsoft firewall so that it does not removal TCP options and also allow shifted TCP sequence numbers?
Thanks a lot