Remote Connect from outside LAN

[DigitalCancer]

Hello All...I am in need of some advice.

I have a little Win 7 server (just backup/media storage) that I want to be able to access from outside of the LAN. I need to actually be able to physically login to it so that I can setup downloads/move stuff around/access my folders, etc.

Currently...I have it set to DMZ and the port forwarded on the router to the specific IP of the machine. I know this isn't the safest bet so I'm curious of any other ways to connect to it via remote.

Please keep in mind I need something that will not need any 'authorization' from the other side since there won't be anyone there to hit 'yes, allow remote control'. ^_^

The way I have it setup currently is perfect but I want it to be secure.

 

[Cr0nJ0b]

Remote desktop would seem to fit the bill. It's built in. Otherwise you could use VNC. try tight VNC

 

[BTA]

You should only have to forward the port for RDP to your server. (3389 I think, google it)

VNC probably uses a different port so you'd have to google what port that is. Either would work as you describe.

DMZ is bad.

 

[DigitalCancer]

Ahh...so since I forwarded the port already (it was 3389) then I don't have to have the machine in DMZ then correct?

Sorry..not a network guru by any means..I'm hardware...not network, lol.

 

[nanaki333]

correct. if you want it more secure, pick a random port (12345) on the firewall side and forward it to 3389 on your computer behind the firewall.


not sure this is asked in the memory section though.

 

[DigitalCancer]

wow...I just checked my router and I never enabled the DMZ!

I'm good then...I'm port forwarding 3389 to the machine in question.

So that's the most secure setup then? I've got my router setup pretty strictly with complex passwords (as well as the machine) and also only allowing so many connections at one time with specific IP address for each (we have up to 9 devices at any given time between 4 phones, 3 ps3's, 2 laptops, etc).

 

[DigitalCancer]

correct. if you want it more secure, pick a random port (12345) on the firewall side and forward it to 3389 on your computer behind the firewall.


not sure this is asked in the memory section though.

Alright...I might go ahead and do this as well then.

Thanks for the info guys! Got me fixed up pretty quick too! ^_^

 

[BTA]

Alright...I might go ahead and do this as well then.

Thanks for the info guys! Got me fixed up pretty quick too! ^_^

Just so you know when you do this using a different port, when you want to remote in instead of

Computer: yourhomeip

You'd do

Computer: yourhomeip:12345

 

[zuffy]

Make sure you change your password local security policy to include account lockout threshold. Default is never. I would set it to like 5 tries and maybe lockout duration for 60 minutes.