Re: Port forward
- From: "Sooner Al [MVP]" <SoonerAl@xxxxxxxxxxxxxxxxxxxxx>
- Date: Sun, 18 Dec 2005 05:10:54 -0600
It looks to me like a VPN would be more appropriate. Multiple users
connecting to the SBS domain via a VPN tunnel versus multiple ports open on
the firewall.
You could either purchase a VPN end-point type router or use SBS (which I
believe includes a VPN server) as the end-point. I suggest you post to
"microsoft.public.windows.server.sbs" news group for help with the latter
option. As far as VPN end-point type routers look for devices like these...
http://us.zyxel.com/products/model.php?indexcate=1073271397&indexcate1=1123007871&indexFlagvalue=1021873683
http://us.zyxel.com/products/model.php?indexcate=1082973192&indexcate1=1123007871&indexFlagvalue=1021873683
....or...
http://us.zyxel.com/products/model.php?indexcate=1126088144&indexcate1=1123007871&indexFlagvalue=1021873683
http://us.zyxel.com/products/model.php?indexcate=1126002763&indexcate1=1123007871&indexFlagvalue=1021873683
On a much smaller scale I do the same thing with Secure Shell (SSH) and
connect multiple Remote Desktop sessions through the one tunnel.
http://theillustratednetwork.mvps.org/Ssh/RemoteDesktopSSH.html
--
Al Jarvi (MS-MVP Windows Networking)
Please post *ALL* questions and replies to the news group for the mutual
benefit of all of us...
The MS-MVP Program - http://mvp.support.microsoft.com
This posting is provided "AS IS" with no warranties, and confers no
rights...
"Brian" <Brian@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:B2891473-6A3E-4299-A38A-4ABCB4BEEEBC@xxxxxxxxxxxxxxxx
> OK, so this is not strictly an XP question, although the workstations
> involved are XP Pro. It is really a gateway metric question.
>
> I have a client with an office of about 30 computers in a Win2K SBS
> domain.
> More & more users want remote access (i.e. RDP from home to office). I
> have
> been simply assigning an alternate RDP port to the user's workstation in
> the
> office & setting up a forwarded port on the firewall/router (Netgear
> FVS318)
> for each. The LAN IP of this firewall has, to this point, been the gateway
> for all the workstations on the LAN.
> However, I just got my 17th user who wants RDP; the firewall supports only
> 16 ports forwarded. I know I can probably get a more expensive router (any
> suggestions)? that will handle 32 ports forwarded.
>
> Or, can I just install two FW's and set up some of the ports on each (the
> additional FW can have a public IP address in the same subnet as FW #1 and
> with the same gateway). Here's the the question (I am currently testing
> this):
>
> I cannot get an incoming RDP connection to work without setting the
> gateway
> on the workstation (or at least one of its gateways) as the LAN IP of the
> FW
> that will forward RDP to that workstation.
>
> Or (and this is the heart of the question) I can set up multiple gateways
> on
> the workstation. This works if I set the metric for FW #1 (the gateway) as
> 1
> and FW #2 (the RDP firewall) as 2. Now, two questions:
>
> 1. Should I just set up all workstations (regardless of which FW handles
> the
> RDP connection for the workstation) generically with two gateways (FW1:
> metric1/FW2:metric2), or is it better to set up each workstation with only
> one gateway?
> 2. Is this configuration likely to cause me any routing problems?
.
- Follow-Ups:
- Re: Port forward
- From: Brian
- Re: Port forward
- Prev by Date: Re: Linking laptop to home PC
- Next by Date: Re: Port forward
- Previous by thread: Re: Linking laptop to home PC
- Next by thread: Re: Port forward
- Index(es):
Relevant Pages
|
