Solved

How can I connect using VNC to my internal servers via Windows 2008 Terminal Service Gateway Server

Posted on 2009-06-28
2
955 Views
Last Modified: 2013-11-30
Hi,
I was told by Microsoft that Windows 2008 Terminal Services Gateway Server and TS Web Access would allow me to utilize an application on the TS Server. So, I'm trying to achieve the following:
1. Access TS Web via TS Gateway Server through port 443 only. (This I was able to achieve)
2. Run VNC Viewer off TS Web Access which I can then use to connect to my application servers (Which I have not been able to achieve).
So, million dollar question - is this possible? I have been able to RDP through 443 via my TS Gateway Server so I know that works but how would I be able to use VNC from TS Web Access to connect to my internal servers. And the catch is that only port 443 is allow to the gateway server.

Any response will be much appreciated.

Thank you in advance.

regards,

Ricky Chong
0
Comment
Question by:pepelepew8
2 Comments
 
LVL 9

Expert Comment

by:Jeff Brown
ID: 24731606
if i am reading this correctly. the following is true

externally port 443 forwards to TS
internally on that network tho what ports are available?
if only 443 is available on the internal network then this is not possible as vnc and RDP TS cannot be using the same ports on the same adaptor.

Ususally when i am setting up something like this i configure this way

one gateway server with 2 ethernet cards
card 1 faces the internet heavily firewalled with 443 open to TS RDP but no local traffic is allowed
card 2 faces Local or VPN trafic and is trusted with more ports open but has no routing to the internet
card 2 is selected for vnc traffic on its ports which can be set to anything using the vnc server and client settings.  I probably wouldn't use 443 even tho its on the second nic tho just adds confusion.

--wild
0
 
LVL 1

Accepted Solution

by:
pepelepew8 earned 0 total points
ID: 24791491
Hi,

Sorry for the late reply. Actually I could do it. And it seems to be working fine. I guess how the technology works is connectivity to internet based users will be directed to the Terminal Service Gateway Server which will then proxy to port 3389 to the Terminal Service Server when accessing the applications.

All I needed was to get my certificates working properly and it was quite easy to do. :)
0

Featured Post

Too many email signature changes to deal with?

Are you constantly being asked to update your organization's email signatures? Do they take up too much of your time? Wouldn't you love to be able to manage all signatures from one central location, easily design them and deploy them quickly to users. Well, you can!

Join & Write a Comment

Suggested Solutions

At the beginning of the year, the IT world was taken hostage by the shareholders of LogMeIn. Their free product, which had been free for ten years, all of the sudden became a "pay" product. Now, I am the first person who will say that software maker…
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now