Hi Pete, What wrong with pptp vpn-ing to a snapgear and then rdp-ing into the server or PC ? The pptp is only up for when it is getting used. The rdp is only used inside the vpn.
Andrew.C -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Peter Machell Sent: Thursday, 8 March 2007 7:33 AM To: General Practice Computing Group Talk Subject: Re: [GPCG_TALK] Internet redundancy On Wed, March 7, 2007 6:01 pm, David Guest said: > Greg Twyford wrote: >> How is the problem of insecure remote networks any better with SSH >> RDP, as you call it? >> >> If someone can get control of your remote PC via an insecure wireless >> network, and you are running SSH to the surgery, couldn't they wreak >> as much havoc as the two-year old playing with the remote PC when its >> in VPN mode? > Greg > > I think the idea is that if they get into your surgery they cannot get > back the other way to the remote connecting machines. The trouble with > VPNs is damage can keep cascading through the connected but physically > remote networks. > > I'm sticking with SSH RDP. Number of open ports required for SSH connection to any PC on your network = 1 Number of open ports required for VPN access to a single PC on your network = 65536 x # of PCs Unless you have something better than the Windows firewall on each system, the above is true. IPSEC VPN has it's place - joining two networks that can be totally trusted. For remote access it's extreme overkill and a security risk, IMNSHO. cheers, Peter. _______________________________________________ Gpcg_talk mailing list [email protected] http://ozdocit.org/cgi-bin/mailman/listinfo/gpcg_talk _______________________________________________ Gpcg_talk mailing list [email protected] http://ozdocit.org/cgi-bin/mailman/listinfo/gpcg_talk
