?
Solved

how to access a workstation from outside the network

Posted on 2008-06-17
10
Medium Priority
?
297 Views
Last Modified: 2010-05-18
Hello Experts,

I have a private network using Windows 2003 servers and a SonicWall firewall; I want to find out if there is a way for a user to access a specific WinXP machine from outside the network where he gets directly to the login prompt on that machine.

My idea is to use public IPs for each machine and RDC into the public IP; the firewall will direct traffic to the specific machine and process the RDC request.

My boss thinks there is a way to do this using VPN connection. He says by connecting through VPN it should land to the login prompt.

Can you help?
0
Comment
Question by:Newco
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
  • 2
10 Comments
 
LVL 70

Expert Comment

by:KCTS
ID: 21805085
One way to do it would be to set-up your router to forward the RDP port (389) to the machine and connect using remote desktop
0
 
LVL 2

Author Comment

by:Newco
ID: 21805121
that's what I thought but I would need different public IPs right?   If not, all users that want to access their machine using rdp will land on the same machine. We only have one public IP.
0
 
LVL 70

Expert Comment

by:KCTS
ID: 21805238
If you want multiple user access then thats a different matter - I thought we were taking about a single user for the occasional seesion, for multiple users you really need to set up a Terminal Server
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
LVL 2

Author Comment

by:Newco
ID: 21805286
Sorry for not explaining myself; I want different users to access different machines.
Ex. User1 = Access Machine1; User2=Access Machine2, etc.

Thank you,
0
 
LVL 70

Assisted Solution

by:KCTS
KCTS earned 1000 total points
ID: 21805319
That would be very waateful, you would need to have a machine switched on for each user that might want to connect and then come up with some way of directing each user to the appropriate computer - A terminal server is the way forward.
0
 
LVL 2

Author Comment

by:Newco
ID: 21805343
so your suggestion is: Terminal Server, then RDC to the machine?
0
 
LVL 3

Assisted Solution

by:exhaust
exhaust earned 1000 total points
ID: 21810438
To properly meet your requirement Terminal Server is the proper way to go. But if you feel like a hackjob you can simply update the registry on each machine to change it's listening RDP port from the default 3389.

http://support.microsoft.com/kb/306759

Then when they connect from outside they just need to enter the address:

"computername:portnumber"
0
 
LVL 2

Author Comment

by:Newco
ID: 21816476
what about this:  open Desktop Console from a batch file, for example RDC over VPN, using: 'mstsc /v:servername /console command'

Sintax:  mstsc.exe /v:ServerName /f
where: ServerName = Machine Name
/f=Full Screen

would that work?
0
 
LVL 3

Expert Comment

by:exhaust
ID: 21819963
No it would not work. The fact of the matter remains: the client's listening port has to be unique since you are sharing one public ip address. In otherwise your socket connection (ipaddres:port#) has to be unique for the firewall to differentiate how and where to forward the incoming RDP session.
0
 
LVL 2

Accepted Solution

by:
Newco earned 0 total points
ID: 21822448
Thanks exhaust,

I actually used RDP over VPN: I changed the VPN settings on the client's machine to run the script after the communication is established (mstsc /v:machine /f) and it works perfect!

The command opens the RDP session after establishing the VPN communication and I get right to the login prompt. I did not have to change any port numbers.

We use SonicWall firewall and their VPN client software.

Thanks for your suggestions!
0

Featured Post

WatchGuard's M Series Appliances - Miecom Approved

WatchGuard's newest M series appliances were put to the test by Miercom.  We had great results and outperformed all of our competitors in both stateless and stateful traffic throghput scenarios! Ready to see how your UTM appliance stacked up? Download the Miercom Report!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

It is only natural that we all want our PCs to be in good working order, improved system performance, so that is exactly how programs are advertised to entice. They say things like:            •      PC crashes? Get registry cleaner to repair it!    …
Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question