Solved

Secure Remote Access Suggestions Needed

Posted on 2013-12-11
6
161 Views
Last Modified: 2014-02-07
I need a remote access solution so we can perform technical assistance on remote computers and for our customers to access their network resources.   We support Windows based networks.

(I have heard grumblings that Terminal Services is problematic because hackers can port scan and then hammer the connection for the correct login credentials. - Do you agree?)
0
Comment
Question by:howmad2
  • 3
  • 2
6 Comments
 
LVL 20

Expert Comment

by:n2fc
ID: 39711407
1) Remote support via TeamViewer...
See: http://www.teamviewer.com/en/index.aspx

Easy to install; easy to use; free option as well as tech support licensed version

2) Use VPN: via Hamachi...
See: https://secure.logmein.com/products/hamachi/

A little more work to setup & install; free option; allows network access for shared resources without necessarily logging on to a particular computer.
0
 
LVL 9

Expert Comment

by:stu29
ID: 39712160
What kind of Firewall are you running?  Does it have built in VPN capabilities?  If so this would be the most secure option for remote access to the network, and for your remote support of workstations, once your users are connected up to the VPN they will available to your support staff.
0
 

Author Comment

by:howmad2
ID: 39712645
Sonicwall.  Would you suggest VPN connection and RDP within the VPN tunnel?
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 9

Accepted Solution

by:
stu29 earned 500 total points
ID: 39714062
Defiantly.  You already have the tools needed.  Depending on your box you can either do client VPN's (company laptops etc) or SSL VPN (Non Domain Computers).  Once connected you have the ability to fully manage your systems and keep visibility.

Configure your tunnels to be 2 way for your Helpdesk computers so your support staff can go out over them for remote assistance).

Nice and secure, and you keep control over your "allowed" products installed on company computers.
0
 

Author Comment

by:howmad2
ID: 39714100
Are VPN connection vulnerable if the client computer has malware or viruses.  Is there a was to not allow the connection if the client is infected, doesn't have virus protection, etc?
0
 
LVL 9

Expert Comment

by:stu29
ID: 39714141
I will answer in two parts.

"Are VPN connection vulnerable if the client computer has malware or viruses" .... this fully depends on how you configure your access rules.  A common fault it to allow "ALL" communication over VPN's.  This should not be the case.  You should only explicitly allow what they need and deny all others.

Is there a was to not allow the connection if the client is infected, doesn't have virus protection, etc? ......
Sonicwall does an EndPoint Interegation on their SSL VPN appliances.  Not sure about their client ones.  But all mainstream VPN providers provide some sort of rules based system that can check the endpoint for Windows Versions, Installed security software etc .. then each ofter this level will vary on level of detail.  I usually restrict to only supported Windows Versions, Virus DAT's no older than 7 days and scanned within the last 30 days.
0

Featured Post

Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
RDweb on windows 2012 7 56
using a remote printer through an RDP session 6 57
Looking for a Dameware mini remote control alternative 3 112
ost file to pst 10 136
This is a fairly complicated script that will install the required prerequisites to install SCCM 2012 R2 on a server.  It was designed under the functional model in order to compartmentalize each step required, reducing the overall complexity.  The …
Remote Desktop Shadowing often has a lot of benefits. When helping end users determine problems, it is much easier to see what is going on, what is being slecected and what is being clicked on. While the industry has many products to help with this,…
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question