We have a cisco pix router and a site to site vpn setup. I want to enable someone to use REMOTE DESKTOP CONNECTION to connect to the server from outside the network. Can I just go through the VPN wizard on the PIX and setup a remote access VPN? What is the easiest way for me to allow someone to remote connect to the network and be able to use remote desktop connection to access the server?

This is what I was told to do but this really doesnt make any sense, if anyone can give me a little more detail on how to implement this that would be great. For the pix you will need to set up nat for an unused public ip to an the internal private ip of the server. Then You will create an inbound and outbound rule for the vnc port to internal ip. So The nat allows the routing and the rule permits specific access to the vnc service on the server.

There's no true that you need a unused public IP. You can use the IP configured in the pix for the public interface. i.e.: e0 (public): 172.16.0.100 / 24 e1 (internal): 192.168.0.1 / 24 Internal server: 192.168.0.20 / 24 In Cisco PIX add the following lines to allow RDC (tcp port 3389) access-list acl-outside permit tcp any host 172.16.0.100 eq 3389 static (inside,outside) 172.16.0.100 192.168.0.20 netmask 255.255.255.255 0 0 That's all