5 Things NetMotion Mobility® Can Do that Microsoft Always On VPN Can’t

Microsoft is no longer investing in DirectAccess and going forward they are recommending Always On VPN be used as a replacement for Windows 10 remote access. Always On VPN provides seamless, transparent and always on remote access like DirectAccess, but does so using traditional client-based VPN protocols like Internet Key Exchange version 2 (IKEv2) and Secure Socket Tunneling Protocol (SSTP). While Always On VPN has some advantages over DirectAccess, NetMotion Mobility® provides these same benefits and more.

Here are 5 important things NetMotion Mobility can do that Microsoft Windows 10 Always On VPN can’t.

1) Optimized Connection

The NetMotion Mobility connection is not simply a static connection like Windows 10 Always On VPN provides. The NetMotion Mobility connection includes many advanced features designed to ensure reliable connectivity and optimal performance even when network connectivity is poor.

Unlike IKEv2 and SSTP, NetMotion Mobility is designed from the ground up to provide stable and consistent network connectivity even when latency and packet loss are high. NetMotion Mobility uses UDP for transport to avoid the inherent inefficiencies associated with TCP connections. In addition, it provides dynamic link optimization to accommodate for changes in connection quality and available bandwidth.

Further, the native packet loss recovery and forward error correction features of NetMotion Mobility reduce the number of packet retransmissions required when packet loss is high, which provides better performance. Session persistence ensures that application connections remain active when network connectivity is disrupted, even during extended periods of connectivity loss.

2) Quality of Service (QoS)

With Always On VPN, all client applications have full access to the VPN connection by default. Always On VPN provides no native way to prioritize available bandwidth for specific applications.

NetMotion Mobility includes built-in Quality of Service (QoS) to enable traffic shaping and ensure mission critical applications always have priority when communicating over the VPN. In addition, policy can be configured to further control application behavior over the VPN under varying conditions.

3) Automatic Configuration Management and Change Tracking

Always On VPN client configuration settings are maintained by a manually configured XML file that is provisioned using a Mobile Device Management (MDM) solution. Once deployed it is difficult to view the current configuration in any intuitive way, either on the client or server. Additionally, if changes to the configuration are required, the Always On VPN connection must be deleted and re-created. Further, changes to the XML configuration file can be made by anyone with access to the file and are not monitored or tracked without using additional technologies.

NetMotion Mobility includes native configuration management and change tracking features that allow for the automated deployment and auditing of any changes made to the configuration. Any changes to the configuration are automatically propagated to all clients. Also, the nature of those changes along with the user who made them is logged and can be rolled back at any time.

4) Non-Microsoft Client Support

Always On VPN is a Microsoft-only solution. It is designed to work exclusively with Windows 10. Non-Microsoft operating systems are not supported. In fact, even Windows 7 does not work with Always On VPN!

NetMotion Mobility offers broad client support including Windows (all versions!), macOS, iOS and Android. NetMotion Mobility is a comprehensive remote access solution designed to meet mobility requirements for all devices, not just Microsoft. This enables organizations to consolidate all their remote network connectivity into a single solution and eliminate the need to support multiple technologies for different client operating systems.

5) Captive Portal Navigation

When an Always On VPN client is on a network that has a captive portal, connectivity is often delayed or fails completely even after successfully navigating the portal. In some configuration scenarios, the captive portal may not be accessible at all. This happens because Always On VPN is unaware of captive portals and blindly assumes that it has Internet connectivity when in fact it does not.

NetMotion Mobility includes integrated and intelligent captive portal detection and awareness and will allow limited access to the portal for the purposes of obtaining full Internet connectivity. When this happens, the mobility client will then enforce any policies defined by the administrator going forward.


NetMotion Mobility has many advantages over the Microsoft Always On VPN. It provides a highly optimized remote network connection, ensuring optimal performance during all network conditions. Quality of Service can be used to optimize available bandwidth for mission critical applications, and configuration changes are automatically deployed and tracked. NetMotion Mobility offers broad client support and its native captive portal recognition always ensures consistent and reliable remote network connectivity.

Guest Author: Richard Hicks | Founder & Principal Consultant, Richard M. Hicks Consulting


The views and opinions of guest authors do not necessarily reflect the views and opinions of NetMotion Software.

Most Recent Blog Post