Solved

Terminal services on windows 2003 Enterprise

Posted on 2011-09-09
4
223 Views
Last Modified: 2012-05-12
The Problem is as follows:
I created a new windows server 2003 Enterprise server domain controller
the server has 2 nics
one is configured for intranet the other connects to my router.  My router points the 3389 port to the server, how ever the server doesn't pickup the terminal services request. what neds to be configured on windows server 2003 for the RDP to work via the internet side nic,  note the intranet side rdp works just fine.

Help!
0
Comment
Question by:Steve Samson
  • 2
4 Comments
 
LVL 1

Expert Comment

by:joebot
ID: 36515087
Hello,
You are not able to remote in from the internet side because your firewall is blocking incoming internet traffic. You need to create an exception for 3389 in your firewall and allow internet sources. Your firewall will let local traffic through by default which is why you have intranet access. Are you using Windows Firewall?
0
 
LVL 7

Expert Comment

by:BobintheNoc
ID: 36515240
NOTE: And a MAJOR one at That.  Unless you're using something ISA server on the DC, it's hugely bad practice to:
1. Expose your DC to the internet
2. Multihome a domain controller


This does seem to be a common example in SBS based installations with the remote workplace function.  I cringe at this concept, but if using ISA server firewall, it's not sooo bad.

Another thought, typically when multihoming a DC, you have to try to make sure that services are only bound to ONE of the interfaces.  Otherwise, it'll list the outside interface potentially for many services, including A records, and the outside interface generally isn't reachable by your inside clients.  The most problematic of this is the A record for the DC, and the A record(SAME AS PARENT) for the domain.  When a client queries for your domain A record, such as mycompany.local, it'll get two results, one of which is not reachable--bottom line, causing a 50% failure rate on initial lookups.  Same goes if you attempt to connect to the DOMAIN's NETLOGON/SYSVOL share instead of a specific DC's netlogon/sysvol share.
0
 

Accepted Solution

by:
Steve Samson earned 0 total points
ID: 36522832
I found the Problem, it as in the routing utility on server 2003, you need to set the routing for the internet side card to listen for the port 3389 and open it up for access.  This is set by default on the intranet side when you  run the connect to the internet utility for server 2003.
0
 

Author Closing Comment

by:Steve Samson
ID: 36553443
I hope that server 2008 is easyer to work with.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Preface Having the need * to contact many different companies with different infrastructures * do remote maintenance in their network required us to implement a more flexible routing solution. As RAS, PPTP, L2TP and VPN Client connections are no…
I've always wanted to allow a user to have a printer no matter where they login. The steps below will show you how to achieve just that. In this Article I'll show how to deploy printers automatically with group policy and then using security fil…
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…
Need to grow your business through quality cloud solutions? With everything required to build a cloud platform and solution, you may feel like the distance between you and the cloud is quite long. Help is here. Spend some time learning about the Con…

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now