Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 180
  • Last Modified:

Advanced IP routing

Hello,
We want some workers to connect from their homes through Terminal Server to their computers.
I suppose there must be any way of saying:
- if there's a request from ip xxx.xxx.xxx.xxx port 3389 (Terminal Server), then forward it to ip 192.168.0.5 port 3389.
- if there's a request from ip yyy.yyy.yyy.yyy port 3389 (Terminal Server), then forward it to ip 192.168.0.6 port 3389.

This way, every user would open a terminal server session in its own company computer. I want to specify the port number, because I dont want all the ip traffic to be redirected to different computers (for example, there will be only one web server visible from outside).

I've looked and tried with the Routing And Remote Access (Win2k server with 2 network adapters), but I guess I will need to use a router. We have a cable router to access the internet, but I can't configure it, I can only phone our ISP to open ports.

Can you help me?
Thanks.
0
goosy
Asked:
goosy
  • 2
  • 2
1 Solution
 
lrmooreCommented:


your ISP will have to configure the router to forward port 3389 to your internal address. Each internal PC will have to have a unique port. This should be configurable on the system. First one 3389, next one 3390, 3391, etc., with the router forwarding as appropriate.
0
 
goosyAuthor Commented:
Would it be possible installing a router between our ISP's router and our network and configure it for doing that kind of routing?

I'm not sure about changing in client and server of Terminal Server the port through which connect.
0
 
lrmooreCommented:
Not really, it has to be on the router that has the public Ip address.
0
 
goosyAuthor Commented:
Thanks lrmoore.

As I see that I finally can't do exactly what I wanted, I will do it with different ports as you suggested.

I'll tell the ISP to forward some ports (from 4400 to 4499, ... for example) to one of our internal servers.

"AnalogX Port Mapper" allows me to map one port of the server (where ports from the router will be redirected) to another computer and port. So I'll configure it to map port 4400 to 192.168.0.5:3389 (TCP and UDP), 4401 to 192.168.0.6:3389 and so on.

I think this way is easier than telling the ISP each port mapping, thinking that we can increase our remote workers. Besides, that software allows me to filter incoming IPs, so that I can allow only certain IPs enter.

Users just have to connect usign Terminal Server to our_public_ip:assigned_port

0

Featured Post

[Webinar On Demand] Database Backup and Recovery

Does your company store data on premises, off site, in the cloud, or a combination of these? If you answered “yes”, you need a data backup recovery plan that fits each and every platform. Watch now as as Percona teaches us how to build agile data backup recovery plan.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now