Hi Thor I stand corrected :), btw, it's not like you to mak a mistake, the correct reg key to change the listening port is HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\TerminalServer\WinStations\RDP-Tcp\PortNumber. :)) Steve -----Original Message----- From: Deus, Attonbitus [mailto:Thor@xxxxxxxxxxxxxxx] Sent: Tue 11/06/2002 12:36 PM To: [ISAserver.org Discussion List] Cc: Subject: [isalist] RE: Terminal Server Publishing http://www.ISAserver.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 At 08:11 AM 6/11/2002, you wrote: >First of all change the listening port for TS, then create an incoming tcp >protocol definition for the port that you choose, then publish the server >using that protocol def. > Hi Steve- While changing the listen port is definitely a smart thing to do, you might not to phrase it so that it sounds like a mandatory step. In some cases, folks have to use 3389 when they have custom apps, TSAC, or do not want to create individual connection profiles on all the clients to use a custom port (unless they have XP). Hi Tinus- In the cases where you do not want to change the listen port, make sure you disable RDP on the external interface by going to Terminal Service Config, go to properties of RDP, go to Network Adapters, and only bind RDP to the internal adapter. Then (as Steve said) create an Inbound TCP protocol called TServer or something on 3389. Once that is done, create a server publishing rule to publish 3389 to the internal server. That being said, what Steve said is really the best thing to do... on the server to be published, change the listen port to something other than 3389 (like 13389 or something) using the HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Terminal Server\Wds\Repwd\Tds\Tcp value. You will then have to change the client config as well- see Q187623 for all the gory details. AD -----BEGIN PGP SIGNATURE----- Version: PGP 7.1 iQA/AwUBPQYZFYhsmyD15h5gEQKceACfcg7KiN41VTBVNBpcgVeesJmsypEAn11R FuXVl9RKoAJ9XCoygdcw997U =O0Yj -----END PGP SIGNATURE----- ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: steve@xxxxxxxxxxxxxxx To unsubscribe send a blank email to leave-isalist-244890H@xxxxxxxxxxxxx