remote desktop solution

We have couple branch office in different location
Total remote user are about 15 to 20
They are using remote desktop to connect our terminal server
I am not sure this is safe because anybody could connect our terminal server if they know
public IP and user name and password.
Is there any other way to connect using remote deskop such as mac address or others ?
and Also we are willing to pay remote solution, what is most safy and popular soulation?

Thank you
chungsterpAsked:
Who is Participating?
 
JohnConnect With a Mentor Business Consultant (Owner)Commented:
>>> anybody could connect our terminal server if they know public IP and user name and password.

Yes, of course.

A better way is to put an IPSec VPN router in your offices. I am not clear if the users are remote to any office or if it is just the offices you wish to connect. But assuming the latter, implement VPN between branches and that will secure it. You can also remote into such a setup . .... Thinkpads_User
0
 
jzaniewskiConnect With a Mentor Commented:
Configuring a site-to-site VPN would ensure a secure solution for your branch office. If you have telecommuters or road-warriors, you would also need to implement a client-server VPN solution.

A poor-mans solution would be to change the port number in the inbound connections by using PAT (port address translation) on your firewall.

EX: configure your firewall to except connections from port 45500 (or any high port number) and translate 45500 to 3389 using PAT.  When a user goes to connect using the RDP client, have them append :45500 to the end of the URL or IP.  such as "mydomain.com:45500" or "xxx.xxx.xxx.xxx:45500". This doesn't stop people you don't want from still getting in, but they would now need to know the port number as well.  If you have an IPS/IDS solution on the firewall, any port scans would be blocked and a scan for open ports probably wouldn't be found easily.
0
 
Rob WilliamsConnect With a Mentor Commented:
Though I agree a proper VPN solution is the best option tsmvp has a very slick little tweak for "Customizing the Remote Desktop Connection Client" that has always impressed me, and adds some security:
http://www.wtslabs.com/Downloads/CustomRDC.zip
0
 
JohnBusiness Consultant (Owner)Commented:
Thank you and I was pleased to assist. .... Thinkpads_User
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.