How can I connect using VNC to my internal servers via Windows 2008 Terminal Service Gateway Server

Hi,
I was told by Microsoft that Windows 2008 Terminal Services Gateway Server and TS Web Access would allow me to utilize an application on the TS Server. So, I'm trying to achieve the following:
1. Access TS Web via TS Gateway Server through port 443 only. (This I was able to achieve)
2. Run VNC Viewer off TS Web Access which I can then use to connect to my application servers (Which I have not been able to achieve).
So, million dollar question - is this possible? I have been able to RDP through 443 via my TS Gateway Server so I know that works but how would I be able to use VNC from TS Web Access to connect to my internal servers. And the catch is that only port 443 is allow to the gateway server.

Any response will be much appreciated.

Thank you in advance.

regards,

Ricky Chong
LVL 1
pepelepew8Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Jeff BrownGlobal Helpdesk SupervisorCommented:
if i am reading this correctly. the following is true

externally port 443 forwards to TS
internally on that network tho what ports are available?
if only 443 is available on the internal network then this is not possible as vnc and RDP TS cannot be using the same ports on the same adaptor.

Ususally when i am setting up something like this i configure this way

one gateway server with 2 ethernet cards
card 1 faces the internet heavily firewalled with 443 open to TS RDP but no local traffic is allowed
card 2 faces Local or VPN trafic and is trusted with more ports open but has no routing to the internet
card 2 is selected for vnc traffic on its ports which can be set to anything using the vnc server and client settings.  I probably wouldn't use 443 even tho its on the second nic tho just adds confusion.

--wild
0
pepelepew8Author Commented:
Hi,

Sorry for the late reply. Actually I could do it. And it seems to be working fine. I guess how the technology works is connectivity to internet based users will be directed to the Terminal Service Gateway Server which will then proxy to port 3389 to the Terminal Service Server when accessing the applications.

All I needed was to get my certificates working properly and it was quite easy to do. :)
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Remote Access

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.