Comments on: Windows Small Business Server 2008: Remote Access and Computer Management

By: Don

Don — Tue, 27 Oct 2009 03:14:18 +0000

Pat,

Concise, right-on information. Thank you and congratulations.

By: Pat

Pat — Thu, 19 Feb 2009 23:15:34 +0000

bravo from Paris / France !

By: Blair

Blair — Thu, 15 Jan 2009 19:01:37 +0000

Hello,

Thanks for the summary.

My understanding is that incoming access to port 3389 through the firewall is not required anymore for Connect to Computer in RWW, it works on tcp 443.

I haven’t yet tested if the port is required for outgoing traffic as you say, but I don’t think this is as relevant as incoming traffic becuase a lot of firewalls will let all outgoing traffic go.

Also of interest to people reading the above may be:

You can get desktop access via the newer version of the Remote Desktop Client, you can specify the server name as normal then go to Options | Advanced and under "Connect from anywhere" click "Settings…", and choose "Use this TS Gateway server settings", then enter under server name the RWW address e.g. remote.domain.com.

Also worth noting, the only reason you need to enable port 80 is so that if someone types http://remote.domain.com, it will automatically redirect them to the https version.

If you can get your users to specify https://remote.domain.com, you don’t need port 80 open either.

By: John R. Pattison

John R. Pattison — Tue, 06 Jan 2009 21:21:23 +0000

Using a private certificate is not necessarily any more secure. Anyone could still get to your site; they would just get a certificate error if they didn't have your private root certificate installed on their computer.

Thanks a lot for the feedback! I'll try to write more on SBS2008.

By: Dan

Dan — Tue, 06 Jan 2009 20:21:50 +0000

Great read...though using a private ssl cert seems more secure since if you don't give it out, they can't get to your site.

Have anymore sbs2008 tips?