Hosted RDP Server - is this secure

mdj1501
mdj1501 used Ask the Experts™
on
Hi

We have some sites in HK and China and am looking into the following scenario

They are trying to PPTP into the UK and then use an application on a terminal server. If no one else is working, then this is possible but as soon as more staff arrive it slows down to the point where it is not usable. The internet at both locations is quick but all traffic including email is going down a shared (With Other ISP users) international connection. This is so slow.
In order to speed things up email is being moved so it is hosted in HK. For the terminal server application my thinking was to use a cloud based hosted server in HK. We RDP from HK/China into this and from this server we can then PPTP to the UK and use the terminal server. We have tried this and it is much quicker.
From a security point of view we can restrict what IP addresses can connect to the server but do I need anything further to encrypt the traffic.

Thanks,

Mark.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
You would want to run RDP with SSL, but it can be secure.  I have seen payroll applications use this model. thery use citrix, but it is still secure.

Author

Commented:
This is at a data centre and they have said you can limit the IP's that can connect and it will be secure enough. I have my doubts ?
Scott SilvaNetwork Administrator

Commented:
PPTP is never a secure vpn protocol.. It was breached years ago
Success in ‘20 With a Profitable Pricing Strategy

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

Author

Commented:
We can use SSL VPN with one account for this to increase security. Once one user connects the server is connected so the additional users coming on will connect to the services in the UK.
then you should be ok

Author

Commented:
so just to confirm rdp to datacentre over the internet, ssl to uk and terminal services over that link

Author

Commented:
what if i purchase a ssl certificate for the server I connect to ?
Do you need further assistance, I missed your question about a cert, you can buy one or issue from your CA if you have one

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial