We are a 65 user company running Windows XP, 2003 Servers and fairly standard network setup. We have been offering users a VPN solution thus far that is a little flaky to say the least. Some users use RDP once they have connected but OTHER users require that their Outlook on fat client is up to date and offline whenever they need it to be.
We are looking to standardise on the way in which we can provide remote access to our users. Citrix Secure Gateway is one way of securely providing this but doesn't combat the offline issue. An RDP solution won't combat the offline issue either.
What is the most secure way of providing 'public' access to an RDP Server if we have DMZ capabilities on our server? Can RDP traffic be encrypted? can we put the RDP Server on the DMZ and then route through NAT?
Any advice on this very welcome!