Terminal Service Gateway

The latest versions of Remote Desktop client (for Windows XP, Server 2003, Vista and Server 2008) support a new connection "proxy" that allows a single machine in your business network to provide access to any number of computers using Terminal Services/Remote Desktop.

This is very useful in a business with a single public IP address, allowing you to connect over to the public Internet to the TS Gateway and then connect to a private IP address on the other side of PAT/NAT.  Your TS Gateway box responds to a specially-designated application request on port 443 using SSL – and "proxies" authorized traffic to your internal network and out to the workstation or server providing Remote Desktop/TS services on port 3389.

UNI is testing a terminal services gateway – below is how to configure the remote desktop client (Version 6.0 and higher on Windows — sorry no Macintosh client at this time).  If you need an updated client for Win2000 or WinXP:

Remote Desktop Connection (Terminal Services Client 6.0)

First launch the application (mstsc.exe, or start->All Programs->Accessories->Remote Desktop Client)

tsgw1

Fill in the computer name or IP address of the workstation/server you want to connect to and click the Options button

tsgw2

Click the Advanced Tab in the upper-right then click the settings button.

tsgw3

Click the radio button to "Use these TS Gateway server settings" enter the server name of tsgateway.uni.edu and choose the login method of password/NTLM.   If you connect to other non-UNI computers, or if this is a notebook that is on and off campus, check the box to "bypass TS gateway server for local addresses."  Finally ensure the checkbox is applied to "Use my TS Gateway credentials for the remote computer"

The credential box looks different on XP/WS2003:

tsgw4

Than it does on Vista/WS2008:

tsgw5

Either way, you need to fully qualify your username and domain.  Any OS will allow NT-style username such as "AD-ITS\conklinc" or the Windows-2000 style conklinc@ad.uni.edu

This entry was posted in Uncategorized. Bookmark the permalink.

Leave a Reply