Remote User's without VPN
Hello,
Is there a way to have remote nodes (without VPN access) send inventory updates, receive policy updates changes, and the ability to remote into the laptop by means of remote control using UltraVNC? We currently use Landesk Gateway which allows for those remote users to communicate with the core server without VPN and only internet access. If it is possible, may someone help direct me to where I need to go to setup the KACE appliance so it can communicate with the node (or vice versa)remotely?
Thanks
Is there a way to have remote nodes (without VPN access) send inventory updates, receive policy updates changes, and the ability to remote into the laptop by means of remote control using UltraVNC? We currently use Landesk Gateway which allows for those remote users to communicate with the core server without VPN and only internet access. If it is possible, may someone help direct me to where I need to go to setup the KACE appliance so it can communicate with the node (or vice versa)remotely?
Thanks
0 Comments
[ + ] Show comments
Answers (4)
Please log in to answer
Posted by:
tstaub
14 years ago
Regarding managing remote nodes over the Internet using the K1000:
Yes, you can place the K1000 in a DMZ so you have an internal private connection on your company LAN and a public connection so remote nodes can access the K1000. It's all network routing trickery so to speak. Same scenario if it was just a web server. So, there really no special config needed on the K1000, it's all in network routing. So it depends if you're using a firewall, or a basic router, or some sort of proxy.. there are all sorts of scenarios and each will require a little different configuration of that device to route/direct the traffic to the K1000. Port Forwarding would be one basic option to confi on the router.
You can search this forum for some other details:
http://itninja.com/question/kbox-agents-in-the-dmz-zone&mpage=1
Regarding remote control:
Just about any remote control solution can be used with the K1000 and we bundle UltraVNC if that is preferred. In order for remote control to work, the remote node will need to have a public IP address. So if the remote node is in a hotel, then it must have public IP address and NOT a NAT private IP address.
If you have a remote office with a few systems behind a router on a NAT network, then you can use the VNC repeater which allows you to remote control systems behind a NAT network.
reference: http://www.uvnc.com/addons/repeater.html
These are details that can be sorted out in more detail when our customer go through the JumpStart training.
Yes, you can place the K1000 in a DMZ so you have an internal private connection on your company LAN and a public connection so remote nodes can access the K1000. It's all network routing trickery so to speak. Same scenario if it was just a web server. So, there really no special config needed on the K1000, it's all in network routing. So it depends if you're using a firewall, or a basic router, or some sort of proxy.. there are all sorts of scenarios and each will require a little different configuration of that device to route/direct the traffic to the K1000. Port Forwarding would be one basic option to confi on the router.
You can search this forum for some other details:
http://itninja.com/question/kbox-agents-in-the-dmz-zone&mpage=1
Regarding remote control:
Just about any remote control solution can be used with the K1000 and we bundle UltraVNC if that is preferred. In order for remote control to work, the remote node will need to have a public IP address. So if the remote node is in a hotel, then it must have public IP address and NOT a NAT private IP address.
If you have a remote office with a few systems behind a router on a NAT network, then you can use the VNC repeater which allows you to remote control systems behind a NAT network.
reference: http://www.uvnc.com/addons/repeater.html
These are details that can be sorted out in more detail when our customer go through the JumpStart training.
Posted by:
GillySpy
14 years ago
You may also want to consider adding an SSL certfiicate to secure web/sync and AMP traffic (ports 443 and 52230 respectively)
Posted by:
stephane.gros
13 years ago
Hello.
Do you have install repeater ?
How have you do that?
I have install Kace K1000 in my DMZ and I see now all computers with her IP Private if the computer is in my network and IP Public if outside. That it's perfect.
No I try enable Remove Office. I must install in my DMZ one machine with function Repeater or install that directly on K1000 ....?
Thank you for your help
Best Regards
Stéphane Gros
Do you have install repeater ?
How have you do that?
I have install Kace K1000 in my DMZ and I see now all computers with her IP Private if the computer is in my network and IP Public if outside. That it's perfect.
No I try enable Remove Office. I must install in my DMZ one machine with function Repeater or install that directly on K1000 ....?
Thank you for your help
Best Regards
Stéphane Gros
Posted by:
stephane.gros
13 years ago
Hello.
Do you have install repeater ?
How have you do that?
I have install Kace K1000 in my DMZ and I see now all computers with her IP Private if the computer is in my network and IP Public if outside. That it's perfect.
No I try enable Remove Office. I must install in my DMZ one machine with function Repeater or install that directly on K1000 ....?
Thank you for your help
Best Regards
Stéphane Gros
Do you have install repeater ?
How have you do that?
I have install Kace K1000 in my DMZ and I see now all computers with her IP Private if the computer is in my network and IP Public if outside. That it's perfect.
No I try enable Remove Office. I must install in my DMZ one machine with function Repeater or install that directly on K1000 ....?
Thank you for your help
Best Regards
Stéphane Gros
Rating comments in this legacy AppDeploy message board thread won't reorder them,so that the conversation will remain readable.