Solved

Connect via the Internet to Hyper-V Manager on Hyper-V Server 2012 r2

Posted on 2013-11-27
4
1,394 Views
Last Modified: 2014-11-12
Hi,
I need to connect to a Workgroup Hyper-V server 2012 r2 host at a clients site via their static IP, using Hyper-V Manager and Server Manager too if possible.
I've forwarded port 5985 on their router to the internal IP of the Hyper-V host.

I can connect via their local network using my laptop but am having trouble over the Internet remotely.  I've added their static IP and also DNS entry using the "Set-Item wsman:\localhost\Client\TrustedHosts Server01 -Concatenate -Force" command.
I'm using the same laptop that connects on their local network.

As I can already connect on their internal network the host/firewall etc is all ok.

Thanks.
0
Comment
Question by:Ace-IT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 77

Expert Comment

by:Rob Williams
ID: 39682726
Some protocols are not routable over the Internet and there are major security concerns with even trying to do so.  You would be best to create a VPN and use the system (RSAT) tools using the VPN connection.
0
 
LVL 1

Author Comment

by:Ace-IT
ID: 39682768
Yep I'm using the RSAT tool locally but it would be good to get straight to the Host over the net as per Vshpere.
I'd rather just make changes to a guest via the Hyper-V manager GUI without being on site or remoting into a local workstation.

As this is only a small 5 user site I'd rather not set up a VPN etc and would just open the firewall/port when needed and close it afterwards.

So back to the original qtn, can RSAT connect over the net directly?

Thanks.
0
 
LVL 77

Accepted Solution

by:
Rob Williams earned 500 total points
ID: 39682803
To the best of my knowledge you cannot do so over the Internet.  Though RSAT uses HTTP over port 5985, you also have to consider authentication, DNS, routing, and more.  I would have serious security concerns about doing so, even if it were possible.   A simple Windows PPTP VPN, will offer some basic security, involve no cost, and only takes a few minutes to set up.

If not familiar with the process, though I have not yet done so on 2012 R2, I have blog'd about doing so on previous versions and the same process should apply:
http://blog.lan-tech.ca/2012/01/28/sbs-2011-essentials-configuring-vpn-access/
0
 
LVL 1

Author Comment

by:Ace-IT
ID: 39682809
Thanks RobWill.  I will definitely give up on the direct connection idea and use a VPN.  The security issue that you raised is very important and thanks for highlighting that.

Also if anyone is interested in what looks like a great local "free" GUI to run on a Hyper-V host, Probus-IT Hyper-V Manager seems to do the trick very well.
0

Featured Post

[Webinar] Learn How Hackers Steal Your Credentials

Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them. Thursday, July 13, 2017 10:00 A.M. PDT

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Need In an Active Directory enviroment, the PDC emulator provide time synchronization for the domain. This is important since Active Directory uses Kerberos for authentication.  By default, if the time difference between systems is off by more …
In previous parts of this Nano Server deployment series, we learned how to create, deploy and configure Nano Server as a Hyper-V host. In this part, we will look for a clustering option. We will create a Hyper-V cluster of 3 Nano Server host nodes w…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

690 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question