"BTW my only knowledge of SBS2003 / IT is playing with it by trial and error over 3 years " that would be no big deal on a windows server 2003, but SBS is ....whell ..... SBS.
SBS is very picky on not using the wizards, and doing things manually.
Now, we could try and solve this the windows server 2003 way, but I always solve things the SBS way.
Now, as you probably know, adding pc's manually already breaks one wizard, the 'connectcomputer wizard'.
And by doing that, you break alot:
http://msmvps.com/blogs/bradley/archive/2005/01/23/33632.aspxas you can see the SBS computers need to be in a special OU, the SBScomputers OU.
then there are alot of pre-defined SBS policies applied to those SBS OU's.
one of those OU's are the firewall OU's.
As you can already guess, SBS hangs totally together. If you skipped one wizard, you break a whole lot more.
So not only is a VPN actually less secure then RWW is, RWW is actually easier for the users also.
a must-read article is this one:
http://www.unixwiz.net/techtips/sbs-remote-access.htmlthe clients pc's that were not joined to the SBS domain correctly need to be rejoined back the correct way:
http://techsoeasy.spaces.live.com/blog/cns!AB2725BC5698FCB8!278.entryas we could do all this manually by disabling firewalls etc, we really don't need to do this.
rww (and so RDP) works by default if the SBS and the clients were setup correctly by the wizards.
As you can see, I am not the kind of person that will help you directly, I first want to make sure the basics are fine.
If the basics are fine, rww WILL work, and you WILL be able to connect to the pc's via rww.