Which one is more secure a Remote Desktop Gateway or a VPN?

Hello Experts,

I was wondering if anyone has done the research to provide a factual unbiased answer to this question: What is more secure, a properly configured Remote Desktop Gateway or a VPN? After reading this article from the TechNet Magazine, it is hard for me to decide. Please feel free to share any advantages or disadvantages that you think should tip the scales in favor of one over the other.
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Mark BillExchange, AD, SQL, VMware, HPE, 3PAR, FUD, Anti MS Tekhnet, Pro EE, #1Commented:
VPN 100% , much more unidentified zero days in RDS than in firewalls, your vpn should be done at the firewall level fyi.
It depends on what type of business your in, Terminal Servers themselves open up a lot of vulnerabilities and holes, this is true several times over and can be catastrophic if they are configured incorrectly along with a firewall which is also configured incorrectly.

An internal terminal server not a gateway terminal server in conjunction with a firewall vpn should be fine, sonicwall SSL vpn boxes also link up well with these terminal servers, they provide a web interface the user can access the terminal server from by link.

all new sonicwall firewalls have the built in ssl vpn netextender available too so that is also worth considering.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
there is no definitive answer as its down to opinions, but in my opinon:

VPN is more secure because its simpler. less to hack etc. it also has less dependencies (ie it may just be the firewall and not need other interaction to work)

Remote desktop is secure when setup correctly, but being based on Windows & AD domains, there are more vulnerabilities that are not technically part of the Remote desktop system.

the new RDS systems in 2012 R2 are very secure when setup properly but this requires multiple servers and a strong authentication backend (if your AD has vulnerabilities then RDP inherits them, like poor passwords, unsecured accounts etc)

a VPN is often simpler, but isn't as efficient as RDP and doesn't cope with poor/slow internet lines as well as RDP can.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Enterprise

From novice to tech pro — start learning today.