VPN Tunnel to Home - What are my options for setup from home to a domain

Posted on 2005-05-12
Medium Priority
Last Modified: 2012-08-13
Ok, So i have bee tasked with settign up a secure IPSec tunnel to one of our VP's homes (due to the fact that he is in a wheelchair and needs to be working from home.) His home connection is a cable modem with a dynamic IP address. On our side we are using Smoothwall Express 2.0 (which is our firewall and VPN solution-so it is also the VPN endpoint.)

Now we are setting up a Windows 2000 computer to put at his house that will have:

a) DynDNS client and DynDNS service to resolve his dynamic IP address to a static hostname

b) SSH Sentinel (an IPSec client that will connect his home computer to our VPN endpoint)

Here at work we are a domain with Server 2003 as PDC, Secondary DNS and Win2k server as File Server, secondary DNS, Primary WINS. My supervisor wants this connection to be totally secure and keeps saying he wants this computer to be a terminal. The only thing that we want the VP to be able to do on this computer is:
1) Email (possibly connected to our internal Exchange server-?)
2) Mapped Network drive from our File Server in the domain to his workstation
3) Deltek Application (accounting software client that connects to our Application server and dumps into database)

Here is where I am confused:
Now as I said my supervisor keeps saying he would like this to be a terminal (such as remote desktop connection or terminal services) inside the IPSec tunnel.
1) The problem is what exactly will he connect to with the terminal connection?
2) Is there some software that will accomodate this situation?

My suervisor is wanting some kind of terminal session. What do I do here and how shall I set this up? Need some good advise here!
Question by:Trihimbulus

Accepted Solution

119support earned 2000 total points
ID: 13994672
You can Terminal service (RDP) him into the server or a windows XP pro machine on your network.

The 2000 box has a built in license for Win2k TS, so I would go with that server.  Put the server in Application Mode. (control Pannel, add/remove programs/windows/Terminal Services)

Install the programs that he needs on that server.


Author Comment

ID: 13998215
But if I point him towards the server, won't that basically be letting a user use the server as a workstation? Please explain, I am a newb lol

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Unable to change the program that handles the scan event from a network attached Canon/Brother printer/scanner. This means you'll always have to choose which program handles this action, e.g. ControlCenter4 (in the case of a Brother).
In this article I will be showing you how to subnet the easiest way possible for IPv4 (Internet Protocol version 4). This article does not cover IPv6. Keep in mind that subnetting requires lots of practice and time.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question