SBS has a component they built to act as an RDP proxy. The *do not* tunnel RDP through HTTP. RWW is little more than a "duded-up" TSWEB page that can also modify ISA policies to allow TCP:4141 (not the default RDP port) for the connected client. ------------------------------------------------------- Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://isaserver.org/Jim_Harrison/ http://isatools.org Read the help / books / articles! ------------------------------------------------------- -----Original Message----- From: Joseph Danielsen [mailto:JDanielsen@xxxxxxxxxxxxxxxx] Sent: Thursday, December 15, 2005 12:12 To: [ISAserver.org Discussion List] Subject: [isalist] READ NOW:: terminal services over https http://www.ISAserver.org Thor / Tom: Nice input - and thanks for the article/link. But then how does SBS do it via the RWW dashboard? I don't have RDP/3389 opened/forwarded on my firewall. Joseph F. Danielsen, MCSA-Messaging, MCP Network Blade Inc. 49 Marcy Street Somerset, NJ 08873 (732) 213-0600 www.NetworkBlade.Com -----Original Message----- From: Thor (Hammer of God) [mailto:thor@xxxxxxxxxxxxxxx] Sent: Thursday, December 15, 2005 1:31 PM To: [ISAserver.org Discussion List] Subject: [isalist] Re: READ NOW:: terminal services over https http://www.ISAserver.org I don't know about that place, man... The last time I was in a Denny's, the waitress I had walked with a cane. A CANE! I swear! She had to make something like 9 trips just for my breakfast and some coffee. I was like, "I'm not believing this." Stuff was flopping around on the plate 'cause the one hand she had to carry everything with was shaking all over the place. The sausage ended up all jacked up in my grits, and the eggs were flung over the entire plate like driveway sealant. The hash browns were hanging half off the side-plate like a watch in a Salvador Dali painting. She was like, "can I get you anything else?" and I'm like, "Yeah, a Waffle House!!" t ----- "I may disapprove of what you say, but I will defend to the death your right to say it." ----- Original Message ----- From: "Jim Harrison" <Jim@xxxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Thursday, December 15, 2005 8:20 AM Subject: [isalist] Re: READ NOW:: terminal services over https http://www.ISAserver.org Denny's baby. I'll never forget being asked to leave because my buddy and I (trashed though we were, like good little sailor-boys) were asked to leave because we couldn't stop making rude comments about the "butt-steak" on the menu and our cute waitress's butt. ..ahh, the good old days... ------------------------------------------------------- Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://isaserver.org/Jim_Harrison/ http://isatools.org Read the help / books / articles! ------------------------------------------------------- -----Original Message----- From: Thor (Hammer of God) [mailto:thor@xxxxxxxxxxxxxxx] Sent: Wednesday, December 14, 2005 17:57 To: [ISAserver.org Discussion List] Subject: [isalist] Re: READ NOW:: terminal services over https http://www.ISAserver.org Yeah, I miss Waffle House. I'm sure I would have had many a good memory of that place if I, um, if I could, um, only... remember. Yeah, that's it. It's too bad that the only places that I can't remember over here on the left-coast are Denny's and whatever that other place is. t ----- "God is a comedian playing to an audience too afraid to laugh." ----- Original Message ----- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Wednesday, December 14, 2005 5:20 PM Subject: [isalist] Re: READ NOW:: terminal services over https http://www.ISAserver.org Ha! Waffle House -- the place to go after a bender. Thomas W Shinder, M.D. Site: www.isaserver.org Blog: http://spaces.msn.com/members/drisa/ Book: http://tinyurl.com/3xqb7 MVP -- ISA Firewalls > -----Original Message----- > From: Thor (Hammer of God) [mailto:thor@xxxxxxxxxxxxxxx] > Sent: Wednesday, December 14, 2005 7:08 PM > To: [ISAserver.org Discussion List] > Subject: [isalist] Re: READ NOW:: terminal services over https > > http://www.ISAserver.org > > That's what I like about your articles, Tom... They're just > like a Waffle > House menu! > > t > > ----- > "God is a comedian playing to an > audience too afraid to laugh." > > > ----- Original Message ----- > From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx> > To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> > Sent: Wednesday, December 14, 2005 4:41 PM > Subject: [isalist] READ NOW:: terminal services over https > > > http://www.ISAserver.org > > Hi Dan, > > Read this NOW: > http://www.msfirewall.org/isa2004/2004pubremotewebconnp1/2004p > ublishremo > tewebconnection-1.htm > > It has pictures and everything and is meant to dispel the > myth of MS RDP > over HTTP. > > > Its my small attempt to educate people about how RDP and the TSAC Web > site work and how it doesn't work. > > Tom > > Thomas W Shinder, M.D. > Site: www.isaserver.org > Blog: http://spaces.msn.com/members/drisa/ > <http://spaces.msn.com/members/drisa/> > Book: http://tinyurl.com/3xqb7 <http://tinyurl.com/3xqb7> > MVP -- ISA Firewalls > **Who is John Galt?** > > > > > -----Original Message----- > > From: Dan Bartley [mailto:dan@xxxxxxxxxxxxxxx > <mailto:dan@xxxxxxxxxxxxxxx> ] > > Sent: Wednesday, December 14, 2005 5:45 AM > > To: [ISAserver.org Discussion List] > > Subject: [isalist] RE: terminal services over https > > > > http://www.ISAserver.org <http://www.ISAserver.org> > > > > Could it not be done over a web enabled terminal services? > > Set up a server > > for web enabled TS, then make that SSL only? Not sure if that > > would work > > because of the name requirements to use it (DNS might > prevent it from > > working?). Think I'll see if it can be a published web site, > > curiosity. > > > > > > Best Regards, > > > > Dan Bartley > > > > -----Original Message----- > > From: Ara Avvali [mailto:ara.avvali@xxxxxxxxxxxxx > <mailto:ara.avvali@xxxxxxxxxxxxx> ] > > Sent: Wednesday, December 14, 2005 01:14 > > To: [ISAserver.org Discussion List] > > Subject: [isalist] RE: terminal services over https > > > > http://www.ISAserver.org <http://www.ISAserver.org> > > > > Haha > > Jim 25/8 :) I knew you answer in 5 minutes! > > Man how come you are always here? I guess you are using a portable > > device like blackberry. > > > > Anyway, may I ask why? > > > > > > -----Original Message----- > > From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx > <mailto:Jim@xxxxxxxxxxxx> > ] > > Sent: Tuesday, December 13, 2005 10:06 PM > > To: [ISAserver.org Discussion List] > > Subject: [isalist] RE: terminal services over https > > > > http://www.ISAserver.org <http://www.ISAserver.org> > > > > You can't do it. > > Now - wasn't that easy? > > > > -------------------------------------------- > > Jim Harrison > > MCP(NT4, W2K), A+, Network+, PCG > > http://isaserver.org/Jim_Harrison/ > <http://isaserver.org/Jim_Harrison/> > > http://isatools.org <http://isatools.org> > > Read the help / books / articles! > > -------------------------------------------- > > -----Original Message----- > > From: Ara Avvali [mailto:ara.avvali@xxxxxxxxxxxxx > <mailto:ara.avvali@xxxxxxxxxxxxx> ] > > Sent: Tuesday, December 13, 2005 10:04 PM > > To: [ISAserver.org Discussion List] > > Subject: [isalist] terminal services over https > > > > http://www.ISAserver.org <http://www.ISAserver.org> > > > > Good evening, > > This idea is spinning in my head of publishing a terminal > server using > > https instead of remote desktop. Main reason I think I can > only allow > > remote terminal from machines that I install the > certificate manually > > (maybe I am wrong) also I think authentication happens in ISA > > instead of > > backend server (Like OWA) so if client is not is legitimate > user they > > won't be hammering the back end server and won't pass through > > ISA before > > proper user name and password is used. > > Would someone clear this for me please? > > Appreciated > > > > > > ------------------------------------------------------ > > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > <http://www.webelists.com/cgi/lyris.pl?enter=isalist> > > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > <http://www.isaserver.org/pages/newsletter.asp> > > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > <http://www.isaserver.org/pages/larticle.asp?type=FAQ> > > ------------------------------------------------------ > > Visit TechGenix.com for more information about our other sites: > > http://www.techgenix.com <http://www.techgenix.com> > > ------------------------------------------------------ > > You are currently subscribed to this ISAserver.org > Discussion List as: > > jim@xxxxxxxxxxxx > > To unsubscribe visit > > http://www.webelists.com/cgi/lyris.pl?enter=isalist > <http://www.webelists.com/cgi/lyris.pl?enter=isalist> > > Report abuse to listadmin@xxxxxxxxxxxxx > > > > All mail to and from this domain is GFI-scanned. > > > > > > ------------------------------------------------------ > > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > <http://www.webelists.com/cgi/lyris.pl?enter=isalist> > > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > <http://www.isaserver.org/pages/newsletter.asp> > > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > <http://www.isaserver.org/pages/larticle.asp?type=FAQ> > > ------------------------------------------------------ > > Visit TechGenix.com for more information about our other sites: > > http://www.techgenix.com <http://www.techgenix.com> > > ------------------------------------------------------ > > You are currently subscribed to this ISAserver.org > Discussion List as: > > ara.avvali@xxxxxxxxxxxxx > > To unsubscribe visit > > http://www.webelists.com/cgi/lyris.pl?enter=isalist > <http://www.webelists.com/cgi/lyris.pl?enter=isalist> > > Report abuse to listadmin@xxxxxxxxxxxxx > > > > ------------------------------------------------------ > > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > <http://www.webelists.com/cgi/lyris.pl?enter=isalist> > > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > <http://www.isaserver.org/pages/newsletter.asp> > > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > <http://www.isaserver.org/pages/larticle.asp?type=FAQ> > > ------------------------------------------------------ > > Visit TechGenix.com for more information about our other sites: > > http://www.techgenix.com <http://www.techgenix.com> > > ------------------------------------------------------ > > You are currently subscribed to this ISAserver.org > Discussion List as: > > dan@xxxxxxxxxxxxxxx > > To unsubscribe visit > > http://www.webelists.com/cgi/lyris.pl?enter=isalist > <http://www.webelists.com/cgi/lyris.pl?enter=isalist> > > Report abuse to listadmin@xxxxxxxxxxxxx > > > > > > This email and its contents are intended as a private communication > > between the sender and specified recipient(s). Any other use, > > re-transmission, interception or alteration is prohibited by > > applicable > > laws and will result in criminal and civil liability. > > > > ------------------------------------------------------ > > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > <http://www.webelists.com/cgi/lyris.pl?enter=isalist> > > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > <http://www.isaserver.org/pages/newsletter.asp> > > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > <http://www.isaserver.org/pages/larticle.asp?type=FAQ> > > ------------------------------------------------------ > > Visit TechGenix.com for more information about our other sites: > > http://www.techgenix.com <http://www.techgenix.com> > > ------------------------------------------------------ > > You are currently subscribed to this ISAserver.org Discussion > > List as: tshinder@xxxxxxxxxxxxxxxxxx > > To unsubscribe visit > > http://www.webelists.com/cgi/lyris.pl?enter=isalist > <http://www.webelists.com/cgi/lyris.pl?enter=isalist> > > Report abuse to listadmin@xxxxxxxxxxxxx > > > > > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > <http://www.webelists.com/cgi/lyris.pl?enter=isalist> > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > <http://www.isaserver.org/pages/newsletter.asp> > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > <http://www.isaserver.org/pages/larticle.asp?type=FAQ> > ------------------------------------------------------ > Visit TechGenix.com for more information about our other sites: > http://www.techgenix.com <http://www.techgenix.com> > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion List as: > tshinder@xxxxxxxxxxxxxxxxxx > To unsubscribe visit > http://www.webelists.com/cgi/lyris.pl?enter=isalist > <http://www.webelists.com/cgi/lyris.pl?enter=isalist> > Report abuse to listadmin@xxxxxxxxxxxxx > > > > > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Visit TechGenix.com for more information about our other sites: > http://www.techgenix.com > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion > List as: > thor@xxxxxxxxxxxxxxx > To unsubscribe visit > http://www.webelists.com/cgi/lyris.pl?enter=isalist > Report abuse to listadmin@xxxxxxxxxxxxx > > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Visit TechGenix.com for more information about our other sites: > http://www.techgenix.com > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion > List as: tshinder@xxxxxxxxxxxxxxxxxx > To unsubscribe visit > http://www.webelists.com/cgi/lyris.pl?enter=isalist > Report abuse to listadmin@xxxxxxxxxxxxx > > ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Visit TechGenix.com for more information about our other sites: http://www.techgenix.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: thor@xxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Visit TechGenix.com for more information about our other sites: http://www.techgenix.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx All mail to and from this domain is GFI-scanned. ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Visit TechGenix.com for more information about our other sites: http://www.techgenix.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: thor@xxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Visit TechGenix.com for more information about our other sites: http://www.techgenix.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jdanielsen@xxxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Visit TechGenix.com for more information about our other sites: http://www.techgenix.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx All mail to and from this domain is GFI-scanned.