Remote Home Server Access/Management

[CubisticWings4]

I am finishing up building my first house and have a server rack with 2 servers (for now!) and I need a way to remote access them for management and control. 

 

These servers will be used for game hosting (Tipsey Gaming Game Servers boiiiiiiis!!!)

 

Will have a few more in the coming year for home-wide back-ups and media server.

 

Thanks in advance!

[Windows7ge]

What OS are they running/going to run?

 

On the Linux side generally setting up SSH and then port forwarding on your router is the way to go while on Windows RDP or something like TeamViewer are popular.

[CubisticWings4]

Windows Server 2019

[tech.guru]

you can use RDS, if its over the internet you would need RDS gateway.

its more than just that though you would need a separate DMZ from your LAN.

you should also consider 2FA.

 

even then just be aware its a risk...

 

you will need a public ip/dns

                         dynamic dns

                                   for example. gateway.myfirsthouse.com

 

you should have a firewall

               gateway.myfirsthouse.com (RDS Gateway)

                      port 443 from internet (DMZ)

                      port tcp/udp 3389 to remote servers (LAN)

 

                    ports for authentication

 

LAN

            a couple of RDS/TS for management of you infrastructure

            a rds broker

            a rds license server 

 

see, https://social.technet.microsoft.com/wiki/contents/articles/16164.rds-2012-which-ports-are-used-during-deployment.aspx#Remote_Desktop_Web_Access for more help

[jake9000]

RDS is one of those items that will not function if not licensed, and an RDS CAL is $200 per person. 

 

Personally, I just use Chrome Remote Desktop to access my PC and then rdp in to the servers as needed with mRemoteNG. 

Works well and its secured by my google account. 

[Jarsky]

Personally I use an SSH jumphost running on a Raspberry Pi, which is locked down with key based authentication and fail2ban. 

I then create an SSH tunnel and RDP to my Windows servers as needed. It's free, secure, easy to configure and means you dont have port 3389 exposed on the internet.