shauncarter1
2005-12-12 01:49:02 UTC
I would like everyone to share their thoughts on this probable configuration.
I'm aware that the most secure method of deploying TSweb for external access
is more than likely VPN. However, I have potentially 200 users that will
need to connect. The administrative overhead of VPN would stretch our limited
staff to it's capacity.
I decided to set TSweb up on the DMZ of a PIX firewall. I will only allow
external RDP traffic to that particular device. To ensure security I will
configure policy for only two login attempts and check the security logs on
an ongoing basis. Most importantly I will continously monitor the RDP
security vulnerabilites. I like second opinions so can someone provide me
with a critque?
Thanks
I'm aware that the most secure method of deploying TSweb for external access
is more than likely VPN. However, I have potentially 200 users that will
need to connect. The administrative overhead of VPN would stretch our limited
staff to it's capacity.
I decided to set TSweb up on the DMZ of a PIX firewall. I will only allow
external RDP traffic to that particular device. To ensure security I will
configure policy for only two login attempts and check the security logs on
an ongoing basis. Most importantly I will continously monitor the RDP
security vulnerabilites. I like second opinions so can someone provide me
with a critque?
Thanks