Best Practices for allowing MS Terminal Services RDP sessions
Please bear in mind that this is a topic that I am trying to learn more about and the Watchguard configuration is just one of my many hats. The facts: we have an external office with a dynamic WAN IP, this location has about 6 users that access an application server in the main office location. Currently, they access the app server by initiating a remote desktop session at each workstation to run the needed program. Back at the main office those sessions are handled by the terminal services server (RDP) with adequate licenses, which is installed on a VM application server which is hosted by a HyperVM host server 2012R2. I just setup a T35W and have configured the basic settings. I would like to be able to setup a secure session from the external office to the main office that will allow the RDP connections to work. Since I do not have a static IP at the external office to allow only traffic from that IP address to pass to the application server, I am not quite sure of how to accomplish this configuration and are looking for some input ? If you have something to add, please provide me your thoughts and specific configuration details along with any reference to Watchguard FAQs. I appreciate any help.