G
Guest
OK, so this is not strictly an XP question, although the workstations
involved are XP Pro. It is really a gateway metric question.
I have a client with an office of about 30 computers in a Win2K SBS domain.
More & more users want remote access (i.e. RDP from home to office). I have
been simply assigning an alternate RDP port to the user's workstation in the
office & setting up a forwarded port on the firewall/router (Netgear FVS318)
for each. The LAN IP of this firewall has, to this point, been the gateway
for all the workstations on the LAN.
However, I just got my 17th user who wants RDP; the firewall supports only
16 ports forwarded. I know I can probably get a more expensive router (any
suggestions)? that will handle 32 ports forwarded.
Or, can I just install two FW's and set up some of the ports on each (the
additional FW can have a public IP address in the same subnet as FW #1 and
with the same gateway). Here's the the question (I am currently testing this):
I cannot get an incoming RDP connection to work without setting the gateway
on the workstation (or at least one of its gateways) as the LAN IP of the FW
that will forward RDP to that workstation.
Or (and this is the heart of the question) I can set up multiple gateways on
the workstation. This works if I set the metric for FW #1 (the gateway) as 1
and FW #2 (the RDP firewall) as 2. Now, two questions:
1. Should I just set up all workstations (regardless of which FW handles the
RDP connection for the workstation) generically with two gateways (FW1:
metric1/FW2:metric2), or is it better to set up each workstation with only
one gateway?
2. Is this configuration likely to cause me any routing problems?
involved are XP Pro. It is really a gateway metric question.
I have a client with an office of about 30 computers in a Win2K SBS domain.
More & more users want remote access (i.e. RDP from home to office). I have
been simply assigning an alternate RDP port to the user's workstation in the
office & setting up a forwarded port on the firewall/router (Netgear FVS318)
for each. The LAN IP of this firewall has, to this point, been the gateway
for all the workstations on the LAN.
However, I just got my 17th user who wants RDP; the firewall supports only
16 ports forwarded. I know I can probably get a more expensive router (any
suggestions)? that will handle 32 ports forwarded.
Or, can I just install two FW's and set up some of the ports on each (the
additional FW can have a public IP address in the same subnet as FW #1 and
with the same gateway). Here's the the question (I am currently testing this):
I cannot get an incoming RDP connection to work without setting the gateway
on the workstation (or at least one of its gateways) as the LAN IP of the FW
that will forward RDP to that workstation.
Or (and this is the heart of the question) I can set up multiple gateways on
the workstation. This works if I set the metric for FW #1 (the gateway) as 1
and FW #2 (the RDP firewall) as 2. Now, two questions:
1. Should I just set up all workstations (regardless of which FW handles the
RDP connection for the workstation) generically with two gateways (FW1:
metric1/FW2:metric2), or is it better to set up each workstation with only
one gateway?
2. Is this configuration likely to cause me any routing problems?