Solved

help setting up Dell Win Foundation server for term services

Posted on 2012-04-10
8
383 Views
Last Modified: 2016-11-23
helping out someone with a new Dell server pre-configured with Windows Foundation server. they purchased an additional 5 term server client licenses. anyone have steps to follow to get this up and running so they can remote in ASAP? including getting ISP to configure DNS to resolve to the server.

thanks
0
Comment
Question by:rpliner
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 
LVL 96

Accepted Solution

by:
Lee W, MVP earned 500 total points
ID: 37831187
Install the Remote Desktop Services Licensing Server Role (could be a feature, don't remember off hand) and activate it.  Then add the CALs (will probably require a call to Microsoft to activate.

Then, don't be unwise, DO NOT punch a hole in your firewall to access it.  There was just an exploit on RDS that could allow a hacker to own the box... get a business class firewall with VPN capability and connect to the network with VPN.  Then connect over RDP over the VPN.
0
 
LVL 7

Author Comment

by:rpliner
ID: 37833145
thanks leew. I will do that on the server.

I hear ya on the security. unfortunately, I know they don't have the resources at this time to purchase a business class firewall. Although, a sonicwall tz100 is only a few hundred and should do it. can you recommend anything to make this more secure without a VPN in case they can't / won't purchase the firewall yet?

Also, do I need to contact their ISP and have them set up some DNS records? I think they have a domain with go daddy and their ISP is AT&T.

thanks again
0
 
LVL 96

Assisted Solution

by:Lee W, MVP
Lee W, MVP earned 500 total points
ID: 37833739
Untangle offers a free software UTM - I use it myself and that includes an SSL VPN.  You can also setup Routing and remote Access services on the server and enable VPN through that.

You don't NEED to setup DNS records... you may WANT to to make it easier to access the network.  Use something like "remote.thierdomain.com" but you could also use a service like no-ip.org or just directly access the IP address.
0
Instantly Create Instructional Tutorials

Contextual Guidance at the moment of need helps your employees adopt to new software or processes instantly. Boost knowledge retention and employee engagement step-by-step with one easy solution.

 
LVL 96

Expert Comment

by:Lee W, MVP
ID: 37833746
And that's setup in DNS - you use a name you want to assign to the IP of the server.  The server needs a static public  IP.  If they don't have one, you either need to change that or switch to the no-ip type of service.
0
 
LVL 7

Author Comment

by:rpliner
ID: 37833888
I will check out untangle. they do have public static IPs so I guess I'll call the ISP and see if they can set up some DNS records as I'm sure they'd rather use a name over an IP.

thanks a lot
0
 
LVL 96

Expert Comment

by:Lee W, MVP
ID: 37833908
Does the ISP manage their DNS?  They might, Godaddy might, or a third party might.  Someone NEEDS to and TYPICALLY its the domain registrar but doesn't have to be.
0
 
LVL 7

Author Comment

by:rpliner
ID: 37834089
not sure. I'll check with go daddy first, then ISP since their domain is with go daddy. thx
0
 
LVL 7

Author Comment

by:rpliner
ID: 37924757
thanks leew. still didn't so DNS as they are OK using the IP (it's only 3 people right now). I did set up pinholes to get them up and running, but secured it somewhat using a tutorial I found online (only certain people have access, not admin. still looking into authenticating by computer as well since they all have a travel laptop). They have agreed to get a sonicwall tz100 in the month couple of months.
0

Featured Post

Don't Cry: How Liquid Web is Ensuring Security

WannaCry is just the start. Read how Liquid Web is protecting itself and its customers against new threats.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question