Windows Server

Frank Lewandowski · Guest

Hello!

I have an IIS 6 Webserver up and running on the internet. Now i want to
secure it a bit more. The Server is running with IISShield and the IPSec
Filters i have configured with IPFront.

I could connect the Server over RDP. I want to secure this and set an
VPN for this connection.

Does anyone of you have concepts, documentations or howtoÂ´s?

Kind regards
Franky
--
cygwin FAQ (deutsch): http://guru.wallerbach.de/cygwin/faq.php
cygwin Linksammlung: http://guru.wallerbach.de/cygwin/

Roger Abell [MVP] · Guest

You need to take control of port TCP 3389.
If you can now connect an RDP session then what you have in
place is not blocking this port.
Not being sure what you will use as the VPN server, you will
need to define this port as allowed to the IPs that the VPN
server will be giving out in order to allow this over the VPN.

--
Roger Abell
Microsoft MVP (Windows Server System: Security)
MCDBA, MCSE W2k3+W2k+Nt4
"Frank Lewandowski" <g-u-r-u@despammed.com> wrote in message
news:csrupb$8t8$05$1@news.t-online.com...

Steven L Umbach · Guest

I don't know exactly how you have your VPN setup but you can tunnel through
the VPN connection to the lan IP address of the server for RDP or you can
use RDP directly to the web server by opening port 3389 TCP for RDP access.
If you have an existing VPN server that can accept l2tp, that would be the
way to go for best security as only users with trusted computer certificates
could logon to the VPN. If you go the direct port 3389 TCP connection, you
can greatly increase security if your firewall rules will accept incoming
port 3389 from just authorized IP addresses instead of "any". RDP does use
strong encryption by default if using W2K/XP Pro/W2003. Be sure to restrict
which users can connect via RDP and use very strong password for those
accounts. --- Steve

"Frank Lewandowski" <g-u-r-u@despammed.com> wrote in message
news:csrupb$8t8$05$1@news.t-online.com...

	Windows Server Forum Index -> Security	All times are GMT
Page 1 of 1