Thursday, January 03, 2013 10:48 AMHi All,
I am going to setup a dedicated server running windows server 2012 and hyper-v. I want to setup some sort of vpn that would prevent rdp access from the public internet (i.e. you have to establish vpn first to reach the server via rdp).
I know that windows server has options for this, such as rras and direct access, and forefront (an option) can do this (I think). Are any of these viable? Is this something Forefront TMG can do, or one of the other products? I am new to VPNs (I am a developer) and Forefront, but if the capability is in the product, I will learn it!
Thursday, January 03, 2013 11:00 AM
it is possible with Forefront TMG to limit access to specific protocols / destinations in the VPN tunnel. The same is true with Windows Server 2012 as aVPN Server and basic packet filter rules
regards Marc Grote aka Jens Baier - www.it-training-grote.de - www.forefront-tmg.de - www.nt-faq.de
Thursday, January 03, 2013 11:04 AM
I was looking at the forums and your replies are excellent. :)
Great, so I can use this as the solution. This is just a personal dev environment (this hyper-v server) so I don't need the best of everything.
Is it ok for tmg to run in a vm with 2 NICs? Also, is there any resources that explains the difference between tmg, uag, etc? I am new to this. :)Also, do you have any links to hand that explain what I am trying to do?
- Edited by GSS1 Thursday, January 03, 2013 11:09 AM
Thursday, January 03, 2013 3:50 PMBTW, can I use UAG for this?
Friday, January 04, 2013 8:22 AMModerator
Thank you for the post.
“Is it ok for tmg to run in a vm with 2 NICs?”- yes, you can deploy TMG Edge Firewall with two network adapters as a VM. As for difference between TMG and UAG, please refer to this thread: http://social.technet.microsoft.com/Forums/en-US/forefrontedgeiag/thread/b8d0e1fe-9ab6-4b88-a2cc-4ad016c45196/
Nick Gu - MSFT
- Proposed As Answer by Nick Gu - MSFTMicrosoft Contingent Staff, Moderator Monday, January 07, 2013 4:49 AM
- Marked As Answer by Nick Gu - MSFTMicrosoft Contingent Staff, Moderator Wednesday, January 09, 2013 1:54 AM