<< I use a Microsoft Terminal Server and remote desktop daily. All I need it the world IP address of the termnial server and can connect from any where. (Passworded and other security measures of course) >> A client is configuring a terminal server for external use and we were strongly advised by the outside vendor to maintain a VPN just to protect the RDP port on the terminal server.
Even though we will require the use of an RSA token for remote logins, if you simply open the RDP port to the world it can (and will) be found by someone port scanning. That might invite an attack on that port and, as you can imagine if someone can get into that port it's bad news. I'm about the furthest thing you can get from an expert on VPN or RDP, but it made sense to me. -- Larry
