server 2008 with mulitple IP addresses

amartin99 · 04 Sep 2013

hmmmm I have about 15 servers but I suspect OVH uses a sepret router for each

here is what I have
Mini SP - OVH

Shadowjk · 04 Sep 2013

Ohh... I thought the servers were from within your network.

Unless the server has multiple interfaces you won't be able to assign multiple IP addresses. When making RDP sessions from within an RDP connection the server will use the interface within the same subnet otherwise it will use a source IP address of the one with the default gateway.

You cannot assign an IP address to a particular user. A single user could connect via RDP to any of the assigned IP addresses. You could set an access control list which will deny a particular IP address based on a source machine (IP address) however if that user logs on to any other machine that will bypass this.

I'm not sure how you would circumvent this other than setting up user accounts on the server side and doing logging to see who logs on.

Josh

amartin99 · 04 Sep 2013

hmmm
could it be setup as you say so a user could connect to any of the assigned IP addresses
and then that user would be working from that address
so I just share the IP with him that I want him to use

Shadowjk · 04 Sep 2013

If you wish yes, that being said it may be possible for him to find out about the other IP addresses depending on the permissions he has on that server.

Josh

amartin99 · 05 Sep 2013

nice so how do I do that ?

Shadowjk · 05 Sep 2013

Do you have separate user accounts for each person?

Josh

amartin99 · 05 Sep 2013

yes every user has there own account

Shadowjk · 05 Sep 2013

If everyone has their own user accounts then it would be easier to audit (log) when they log on to a particular server. These links may be of use in order to setup Security Auditing.

Audit logon events: Security Configuration Editor; Security Services

Define or modify auditing policy settings for an event category: Auditing

Since you are not set up as a domain you will have to follow the local computer steps and the policy is defined in the Local Security Policy.

An easy way of finding out the other IP addresses in use that I can think of is via Command Prompt. You can disable this for a particular use by defining the local group policy on each server.

Follow this tutorial to apply to users that you wish to restrict access and then modify the setting listed below for 'User Configuration' - Group Policy - Apply to a Specific User or Group

server 2008 with mulitple IP addresses-group_policy.jpg

Hope This Helps,
Josh

amartin99 · 05 Sep 2013

O I think you misunderstood me
rate now im still just trying to figure out how to use the IP's

Shadowjk · 05 Sep 2013

amartin99 said:

your way over my head hehehe

I have clients that conect to my servers vea RDP
I want to offer them more then one IP address from this one server
like when they connect from the server out to another server I want the other server to see them as dif IP addresses

im explaining this poorly
lets put it in a forum context of sorts
I want t have 4 people connect to my server vea RDP
then open a browser and use it to visit a forum
and have that forum see them each as having a dif IP address

amartin99 said:

O I think you misunderstood me
rate now im still just trying to figure out how to use the IP's

My apologies, based on your previous post I thought you wished to only allow them to RDP to a particular IP address.

After re-reading your post I believe what you want is not possible

On a machine only one interface can have an IP address and default gateway. If a user tries to access the web it will use the default gateway with the lowest metric if found with multiple IP addresses. Meaning, no matter what user logs on they will always be seen as the same IP address on the internet.

Is their a particular reason for this? If you can give us an indication as to why we might be able to offer a suitable alternative.

Josh