RE: Terminal Server Publishing

  • From: "Steve Moffat" <steve@xxxxxxxxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Tue, 11 Jun 2002 18:39:26 +0100

Hi Thor
 
I stand corrected :), btw, it's not like you to mak a mistake, the correct reg 
key to change the listening port is 
 
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\TerminalServer\WinStations\RDP-Tcp\PortNumber.
  
 
:))
 
Steve
-----Original Message----- 
From: Deus, Attonbitus [mailto:Thor@xxxxxxxxxxxxxxx] 
Sent: Tue 11/06/2002 12:36 PM 
To: [ISAserver.org Discussion List] 
Cc: 
Subject: [isalist] RE: Terminal Server Publishing



        http://www.ISAserver.org 



        -----BEGIN PGP SIGNED MESSAGE----- 
        Hash: SHA1 

        At 08:11 AM 6/11/2002, you wrote: 
        >First of all change the listening port for TS, then create an incoming 
tcp 
        >protocol definition for the port that you choose, then publish the 
server 
        >using that protocol def. 
        > 


        Hi Steve- 

        While changing the listen port is definitely a smart thing to do, you 
might 
        not to phrase it so that it sounds like a mandatory step.  In some 
cases, 
        folks have to use 3389 when they have custom apps, TSAC, or do not want 
to 
        create individual connection profiles on all the clients to use a 
custom 
        port (unless they have XP). 


        Hi Tinus- 
        In the cases where you do not want to change the listen port, make sure 
you 
        disable RDP on the external interface by going to Terminal Service 
Config, 
        go to properties of RDP, go to Network Adapters, and only bind RDP to 
the 
        internal adapter. 

        Then (as Steve said) create an Inbound TCP protocol called TServer or 
        something on 3389.  Once that is done, create a server publishing rule 
to 
        publish 3389 to the internal server. 

        That being said, what Steve said is really the best thing to do...  on 
the 
        server to be published, change the listen port to something other than 
3389 
        (like 13389 or something) using the 
        HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Terminal 
        Server\Wds\Repwd\Tds\Tcp value.   You will then have to change the 
client 
        config as well- see Q187623 for all the gory details. 

        AD 



        -----BEGIN PGP SIGNATURE----- 
        Version: PGP 7.1 

        iQA/AwUBPQYZFYhsmyD15h5gEQKceACfcg7KiN41VTBVNBpcgVeesJmsypEAn11R 
        FuXVl9RKoAJ9XCoygdcw997U 
        =O0Yj 
        -----END PGP SIGNATURE----- 


        ------------------------------------------------------ 
        You are currently subscribed to this ISAserver.org Discussion List as: 
steve@xxxxxxxxxxxxxxx 
        To unsubscribe send a blank email to 
leave-isalist-244890H@xxxxxxxxxxxxx

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 06-2002