Solved

Risk of RDP over VPN?

Posted on 2011-09-16
4
583 Views
Last Modified: 2012-05-12
I have a VPN and want to grant a user RDP to his desktop.
He has citrix access and Terminal server, but sometimes it's not always working as expected.

What risk do you think this might bring?

Thank you,
0
Comment
Question by:dguandique
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 

Author Comment

by:dguandique
ID: 36550532
Thanks,
0
 
LVL 2

Accepted Solution

by:
Mike earned 500 total points
ID: 36550544
To RDP over a proper VPN is secure. As long as the user is actually RDPing to an internal address and not just a NATed port on the firewall. (I've seen admins do this before.)
0
 
LVL 8

Expert Comment

by:gsmartin
ID: 36551569
You can also RDP over HTTPS for better security, as well.  

More importantly, this seems to be more of a bandaid to the original issue, which is the reliability of your remote Citrix/Terminal server connection.  Why is the Citrix/Terminal server connection unstable?  For example: If the user(s) connect to Citrix over VPN via an IPSec tunnel - You may need to adjust VPN clients MTU setting to avoid dropping packets (like with Cisco's IPSec VPN Client).  My preferrence is Cisco's AnyConnect VPN client and/or Citrix Access Gateway these are both SSL VPN solution, which typically are more stable.
0
 

Author Closing Comment

by:dguandique
ID: 36713853
thanks
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A hard and fast method for reducing Active Directory Administrators members.
Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question