Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

How can I connect using VNC to my internal servers via Windows 2008 Terminal Service Gateway Server

Posted on 2009-06-28
2
Medium Priority
?
975 Views
Last Modified: 2013-11-30
Hi,
I was told by Microsoft that Windows 2008 Terminal Services Gateway Server and TS Web Access would allow me to utilize an application on the TS Server. So, I'm trying to achieve the following:
1. Access TS Web via TS Gateway Server through port 443 only. (This I was able to achieve)
2. Run VNC Viewer off TS Web Access which I can then use to connect to my application servers (Which I have not been able to achieve).
So, million dollar question - is this possible? I have been able to RDP through 443 via my TS Gateway Server so I know that works but how would I be able to use VNC from TS Web Access to connect to my internal servers. And the catch is that only port 443 is allow to the gateway server.

Any response will be much appreciated.

Thank you in advance.

regards,

Ricky Chong
0
Comment
Question by:pepelepew8
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 9

Expert Comment

by:Jeff Brown
ID: 24731606
if i am reading this correctly. the following is true

externally port 443 forwards to TS
internally on that network tho what ports are available?
if only 443 is available on the internal network then this is not possible as vnc and RDP TS cannot be using the same ports on the same adaptor.

Ususally when i am setting up something like this i configure this way

one gateway server with 2 ethernet cards
card 1 faces the internet heavily firewalled with 443 open to TS RDP but no local traffic is allowed
card 2 faces Local or VPN trafic and is trusted with more ports open but has no routing to the internet
card 2 is selected for vnc traffic on its ports which can be set to anything using the vnc server and client settings.  I probably wouldn't use 443 even tho its on the second nic tho just adds confusion.

--wild
0
 
LVL 1

Accepted Solution

by:
pepelepew8 earned 0 total points
ID: 24791491
Hi,

Sorry for the late reply. Actually I could do it. And it seems to be working fine. I guess how the technology works is connectivity to internet based users will be directed to the Terminal Service Gateway Server which will then proxy to port 3389 to the Terminal Service Server when accessing the applications.

All I needed was to get my certificates working properly and it was quite easy to do. :)
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Let’s list some of the technologies that enable smooth teleworking. 
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question