Enabling secure remote assistance using a terminal services gateway
First Claim
1. A method for providing remote assistance to a client behind a firewall, the method comprising the steps of:
- hosting a link on a TS gateway so that the link, when followed, creates a secure connection between the client and the TS gateway; and
receiving a connection request from a server, the connection request, when fulfilled, establishing a tunnel through the firewall from the server to the client over the secure connection through which remote assistance data may be streamed.
2 Assignments
0 Petitions
Accused Products
Abstract
A secure remote assistance session between computers that are behind firewalls and/or NAT devices is provided by an arrangement that uses a terminal services (“TS”) gateway to enable utilization of a remote desktop protocol (“RDP”) connection by a terminal services client in a reverse direction to that used in a conventional terminal services session. The connection is made via a regular TS gateway protocol mechanism by which the TS client behind a firewall establishes a connection to the remote server that is typically behind a firewall that protects a corporate network. The server then functions as the terminal services client to tunnel RDP data through the established TS gateway connection through the NAT firewall to a client. Thus, the server and client reverse roles after the TS gateway connection is made to thereby enable remote viewing of the graphical user interface that is displayed by the client in support of the remote assistance session.
69 Citations
20 Claims
-
1. A method for providing remote assistance to a client behind a firewall, the method comprising the steps of:
-
hosting a link on a TS gateway so that the link, when followed, creates a secure connection between the client and the TS gateway; and receiving a connection request from a server, the connection request, when fulfilled, establishing a tunnel through the firewall from the server to the client over the secure connection through which remote assistance data may be streamed. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer-readable medium containing instructions which, when executed by one or more processors disposed in an electronic device, performs a method for enabling a remote assistance session with a client behind a firewall, the method comprising the steps of:
-
establishing a terminal services connection with a TS gateway using a COM component; remoting a port from the client to the TS gateway through the terminal services connection; and receiving a notification from the TS gateway when a connection request to the remoted port is received by the TS gateway, the notification invoking a method for connecting the COM component with a terminal services process running on the client. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A method for providing remote assistance from a server to a client that is behind a firewall, the method comprising the steps of:
-
receiving a remote assistance request from the client; providing a link, responsively to the request, for the remote client to follow for establishing a terminal services connection with a server using a plug-in module, exposed by the TS gateway, that communicates with a remote assistance process hosted by the server; and implementing reverse traversal of the terminal service connection, from the server to the client, to create a secure tunnel through the firewall to the client. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification