[ previous ] [ next ] [ threads ]
 
 From:  Adam Ophoff <adam underscore mailinglist at adamophoff dot net>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] m0n0wall and MS Windows Remote Desktop Connection
 Date:  Thu, 06 Apr 2006 16:57:07 -0400 
I cleared my m0n0wall firewall log and tried again... these are the results

16:54:05.782292       WAN       <snip>, port 58928       192.168.1.108, 
port 3390       TCP
16:54:06.037040       WAN       <snip>, port 58949       192.168.1.108, 
port 3390       TCP

both of these were accepted by m0n0wall.  there are no rejections.

Someone else had this to say, which seemed to make sense..

****
One thing to point out--the Remote Desktop Web Connection is simply an 
ActiveX control-based RDP client that runs within Internet Explorer on 
the client-side.  The user is still making a direct RDP connection (port 
3389) to whatever machine you try to connect to.

In other words, if the user is on the WAN, then they'll need to type in 
a public IP (they won't be able to use 192.168.1.110 unless they're 
trying to connect to a box on their own LAN), and your firewall rules 
(and NAT settings) must allow WAN users to establish TCP-3389 
connections to the target box.

The Remote Desktop Web Connection is simply an alternative client 
(rather than using the regular RDP client, 98, ME and 2000 don't come 
with one by default)--it's not a proxy.

- Shaun

****

Regards,
Adam Ophoff

Chris Buechler wrote:
> On 4/6/06, Adam Ophoff <adam underscore mailinglist at adamophoff dot net> wrote:
>   
>> I'm trying to connect to a windows XP box running IIS with Remote
>> Desktop Web Connection on it.  I have IIS running on port 3390, and I
>> can connect to it within the Lan and everything works correctly.  I can
>> also connect to it from the Internet and I see the default starting page
>> like normal but when I enter an IP address (192.168.1.110 for instance),
>> it goes to the next page were it eventually times out.
>>
>>     
>
> It's been quite a while since I've tried this, but I seem to recall it
> using some odd port in addition to the IIS and RDP ports.  Check your
> firewall logs for drops on the WAN.
>
> -Chris
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>