Avatar of Poly11
Poly11
Flag for United States of America asked on

Need to setup a secure RDP connection to a workstation.

Ladies and Gentleman,

I have a request from a technically savvy client who would like to setup a secure RDP connection to a workstation on his network. They don't want to use a service such as LogMeIn or GoToMyPC which is usually what I would recommend.

Is there a secure way to setup an RDP connection to a specific workstation that is secure? I believe that we'll need to NAT the address. Any suggestions will be greatly appreciated.

The workstation is running Windows XP Pro and is attached to a Windows 2008 R2 server.

Thanks
Windows XPInternet Protocols

Avatar of undefined
Last Comment
footech

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Shane McKeown

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Hypercat (Deb)

I agree with smckeown777 - the only secure way I can think to do it with a Windows XP OS would be VPN.
Poly11

ASKER
Yes, this is from outside of the network. I'm thinking of recommending LogMeIn Hamachi. We have the LogMeIon Central edition which works great. The requester is very savvy, therefore I wanted to inquire if there is a better way. Thanks.
SOLUTION
Shane McKeown

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Poly11

ASKER
Well, with Hamachi we won't need to purchase any additional hardware. What are you thoughts about Hamachi?
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes
Shane McKeown

No experience with it to be honest, but I do use Logmein so based on that product you're probably in good shape, yes no need for extra hardware
SOLUTION
Log in to continue reading
Log In
Sign up - Free for 7 days
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
Poly11

ASKER
We have LogMeIn Central and would use it as a commercial product.
George Khairallah

Excellent, then you should be in good shape to use Hamachi. The only caveat with Hamachi, as opposed to traditional VPN, is that you will need to install the Hamachi client on both endpoints : one on your client's XP workstation, and another one on any machine he needs to access his workstation FROM. The latter is traditional, the former, is only a requirement of Hamachi, as it is binding the client with Hamachi's VPN network, not your internal's LAN's network ...  A small price to pay if you ask me... still pretty secure.  I use it a lot, no issues.
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
footech

Once established, RDP connections are encrypted, even when just using WinXP.  When connecting to WinXP though, you don't have the option of NLA to authenticate the machine you're connecting to before the session is established.  Of course, you could have a man-in-the-middle attack, but this couldn't happen to your session in progress.  You would be just as vulnerable here as if you used PPTP for VPN.