set a virtual PC in the cloud and with a VPN add it to my clients local network

Abraham Deutsch
Abraham Deutsch used Ask the Experts™
on
My goal: want to connect to my clients with a unique url for each client

 am wondering if I can set a virtual PC in the cloud and with a VPN add it to my clients local network and then have a link to connect to the vm.

not in a domain environment. and no server on premises
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
You can work redirections  and vpns on a single server so you can access many clients. But you will experience numerous problems with ovelaping networks.

It seems much simpler to have vpn servers running at each client's premises and use whichever vpn you need when you need them.

if you want a central server, you may consider using ssh persistent connections and reverse tunnels to various services on each client premises.
Abraham DeutschIT professional
Top Expert 2016

Author

Commented:
Thank you for your reply;
In re option 1- running at each client's premises  vpn, let's say a raspberry pi, since most small companies run their network on .1, to my understanding there will be a problem to connect to connect to 2 clients at the same time, is that correct?
In re option 2, would you give a little more explanation.
my understanding there will be a problem to connect to connect to 2 clients at the same time

if the networks overlap, yes.
same would appear if you concentrate the vpn terminations in a single server.

but note that openvpn can perform address translations so you can map 10.7.8.9/24 to 192.168.1.0/24 for example

In re option 2, would you give a little more explanation.

let's say you have an existing server called RDB1 in the cloud with ssh installed, and you want telnet access to serverX with ip 10.2.2.2 at a client

you would configure on either 10.2.2.2 or any host on premises that can reach 10.2.2.2 a persistent ssh tunnel to RBD1 with options "-R 4567:RBD1:23"

this would allow any host to access RBD1:4567 and actually reach serverX:23

if you add many tunnels, you'll probably want to centralise the list of opened tunnels on a web page

if you have time to spare, you can even add thin clients on RBD so you can just click and access the resource

obviously you need a little security
- restrict access to RBD as you see fit
- limit all ssh accounts so they can only open remote tunnels and do nothing else

hope that helps, though i'm not entirely sure  i getwhat you really need or what is simple for you to setup
11/26 Forrester Webinar: Savings for Enterprise

How can your organization benefit from savings just by replacing your legacy backup solutions with Acronis' #CyberProtection? Join Forrester's Joe Branca and Ryan Davis from Acronis live as they explain how you can too.

Abraham DeutschIT professional
Top Expert 2016

Author

Commented:
In option 2, is the type of connection a ssh? then this will not fulfill my need since I need gui connection to the client pc to use some of their applications installed locally.
Please advice, appreciate your help
in option 2, the type of connection is NOT ssh.
ssh is merely used to create a tunnel from their location to your cloud server and give access to any number of tcp resources
the above example is about RDP access

--

that said, your needs are not clear to me and it seems what you require may be much simpler.

can't you simply open an rdp/vnc access to whichever required server and only allow access from your ip address ?
Abraham DeutschIT professional
Top Expert 2016

Author

Commented:
the catch in this situation is that client I’m trying to find a solution for is for a company that is somewhat like a  virtual assistant and he has a application that when a incoming call for company abc for example comes in the application will pull up company abc profile. clients who have a web application this is very  straightforward he would click on the link that is saved in that  particular client profile and get access to their application but where it gets sticky if the clients application is a local at the client pc since the application he uses to link incoming calls with the client profile only accepts https link therefore rdp  and all other similar solutions since the way thy establish a connection is not do not via https going with the simple way will not work so I’m trying to find something out of the box hope I clarified the situation, based on this information provided will option 2 be a  solution to this  scenario?
the above is a little difficult to understand due to lack of punctuation, and i am not a native speaker. but yes that would probably require something like solution 2 combined with nordp or novnc on the central cloud server... and a web UI to manage them all.
Abraham DeutschIT professional
Top Expert 2016

Author

Commented:
Thank you for your help
I can assist setting this up if you wish. And if i understood the issue properly ;)

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial