3389 (RDP) Good Way To Get Away From DynDNS
Mar 5, 2012
I have a PC attached to a standard 192.168.1.1 router with port forwarding turned on. The PC has an IP of 192.168.1.10 and I have Port 3389 (RDP) on the router forwarded to that PC's internal IP.
I currently have a DynDNS hostname, example.dyndns.org, and I type that into MSTSC (remote desktop) whenever I'm traveling.
But, is there a better way of doing this? The IP of the PC is not static, but it rarely changes. I do have a domain registered with GoDaddy and have full access to DNS records.
View 19 Replies
ADVERTISEMENT
Jun 3, 2012
192.168.1.10 --> ASA 1-----> ASA 2-------> ASA 3----> server (172.21.16.15)
We have opened 3389 , 80 & 445 ports on all firewalls ( ASA 1, ASA 2, ASA ) for server (172.21.16.15) from (192.168.1.10).We are able to see connection in ASA 1 under show connection for 3389, 445 ,80.
We are not able to see connections in ASA 2 & ASA 3 under show connection for 3389. But we are able to see hits in ACl.
View 3 Replies
View Related
Aug 3, 2011
So from a security standpoint... PPTP through Windows RRAS then RDP to the server?,Open port 3389 to the server and rdp direct? would think that having a VPN out front would block people from attempting a connection, but if the VPN username and RDP username are the same, I feel like its about the same.
View 7 Replies
View Related
Jul 29, 2011
I have a current issue with my 2008 R2 machine.I cannot get Remote Desktop to work. Client machine is Windows 7 Ultimate, windows firewall on the Server machine is disabled, Telnet to port 3389 works (as in, it doesn't error out it gives me a blank screen), the account I'm trying to login to is the only account on the machine (Administrator). Remote Desktop service is installed and set to allow connections on the less secure mode.
View 19 Replies
View Related
Jul 12, 2011
RDP (port 3389) is not working on D-Link network - is there a setting in the d-link to allow this?
View 4 Replies
View Related
Mar 9, 2012
I'm trying to get my ASA 5505 (IOS 8.4) to work, but got stuck on NAT because I would like to allow 3389 access for just a couple of WAN IP's. This is what I found so far:
(config)# object network Internal_RDS(config-network-object)# host 192.168.1.10
(config-network-object)# nat (inside,outside) static interface service tcp 3389 3389(config-network-object)# exit
(config)# access-list inbound permit tcp any object Internal_RDS eq 3389
(config)# access-group inbound in interface outside
But this will allow all WAN IPs to access 192.168.1.10 over port 3389 I guess? I would like to allow only some WAN IP's
View 4 Replies
View Related
Apr 18, 2011
I would like to know how can we allow traffic on ports 3389 (rdp) and 8007 which comes from any to 192.168.2.10 but pretend to be a Phones interface 192.168.2.1? [code]
View 9 Replies
View Related
Nov 3, 2011
At one of our client premises they have an Cisco 1841 router. We need to connect from outside (other location in another country) with Remote Desktop connection port 3389 to an internal IP address ( a server).From any IP address it have to permit a connection on port 3389 to be forwarded to the server.
View 2 Replies
View Related
May 6, 2012
I would like to setup an cisco ASA 5505 to only allow certain IP's on port 3389, but i can't get it to work. Maybe some of you experts know why?
Here is my config:
ASA Version 8.4(3)!hostname cisco-asaenable password ** encryptedpasswd ** encryptednames!interface Ethernet0/0switchport access vlan 2!interface Ethernet0/1!interface Ethernet0/2!interface Ethernet0/3!interface Ethernet0/4!interface Ethernet0/5!interface Ethernet0/6!interface Ethernet0/7!interface Vlan1nameif insidesecurity-level 100ip address 192.168.1.253 255.255.255.0!interface Vlan2nameif outsidesecurity-level 0ip address 95.*.*.* 255.255.255.248!ftp mode passiveobject network obj_anysubnet 0.0.0.0 0.0.0.0object network rdpuser-1host 46.*.*.*object network rdpuser-2host 48.*.*.*object network rdp-host-pchost 192.168.1.20object
[code].....
The allowed IP's are setup on user level (rdpuser-1 and rdpuser-2) .Still do, I can't connect to the server from any of these IP's...
View 6 Replies
View Related
May 15, 2011
we are not able to access port 3389 on host 10.45.4.2 over our vpn connection. vpn is up and running and we can access othet tcp ports on the host but not 3389. hereunder part of the config:
ip http serverno ip http secure-serverip nat inside source route-map SDM_RMAP_1 interface BVI1 overloadip nat inside source static tcp 10.45.4.2 18330 94.229.51.184 18330 route-map SDM_RMAP_2 extendableip nat inside source static tcp 10.45.4.1 3389 213.148.231.156 3389 extendableip nat inside source static tcp 10.45.4.1 5800 213.148.231.156 5800 extendableip nat inside source static tcp 10.45.4.1 5900 213.148.231.156 5900 extendable!access-list 1 remark SDM_ACL Category=16access-list 1 permit 10.45.4.0 0.0.0.255access-list 100 remark SDM_ACL Category=4access-list 100 remark IPSec Ruleaccess-list 100 permit ip 10.45.4.0 0.0.0.255 10.45.1.0 0.0.0.255access-list 101 remark SDM_ACL Category=2access-list 101 remark IPSec Ruleaccess-list 101 deny ip 10.45.4.0 0.0.0.255 10.45.1.0 0.0.0.255access-list 101 permit ip 10.45.4.0 0.0.0.255 anyaccess-list 102 deny ip host 10.45.4.2 10.45.1.0 0.0.0.255access-list 102 permit ip host 10.45.4.2 anyroute-map SDM_RMAP_1 permit 1 match ip address 101!route-map SDM_RMAP_2 permit 1 match ip address 102!!control-plane!bridge 1 protocol ieeebridge 1 route ip
View 6 Replies
View Related
Aug 19, 2012
I have an RDP server farm that lost a disk. The RDP service was still running but users were unable to log in. I'd like to create a health probe that does maybe a combination of TCP probe for port 3389 and something that can determine if the drive that stores user profiles is available.
I cannot add any new service (http or ftp) to the server. Is there any way I can check SNMP mibs on the windows server or maybe WMI through TCL?
View 1 Replies
View Related
Jun 4, 2013
I've enabled RDP on a laptop, but I can't connect to it. Pinging the laptop works. nmap shows ports open, but not RDP. netstat on the laptop shows nothing listening on 3389. I've also tried rebooting. [code]
View 1 Replies
View Related
Apr 22, 2011
Below is my show run of a Cisco 800 router (Two VLAN's, single WAN) that works fine. Problem is that in this senario port 3389 is open for everyone. Only two remote users are allowed to connect trough port 3389. Let's say WAN IP's : 22.33.44.55 and 66.77.88.99. How would a good access-rule look like to fix it?
no service padservice tcp-keepalives-inservice tcp-keepalives-outservice timestamps debug datetime msecservice timestamps log datetime msecservice password-encryptionservice sequence-numbers!hostname cisco-867!boot-start-markerboot-end-marker!logging buffered 51200logging console criticalenable secret 5 ***!no aaa new-modelmemory-size iomem 10clock timezone GMT 1clock summer-time GMT date Mar 30 2002 1:00 Oct 26 2035 1:59!!no ip source-route!!ip dhcp excluded-address 192.168.10.200 192.168.10.254!ip dhcp pool Vlan2 network 192.168.10.0 255.255.255.0 domain-name dsl.local default-router 192.168.10.254 dns-server 213.144.235.1 213.144.235.2 lease 0 8!!ip cefno ip bootp serverno ip domain lookup!!!archive log config
[Code]....
View 2 Replies
View Related
Jan 9, 2013
Today we got our new VDSL internet connection and had to get a new router, which supports VDSL as our old one didn't.We have a small FTP enabled network hard drive (LaCie Cloudbox). With the old router it worked just fine. I configured the new router exactly as the old one, but something isn't right: I cant connect to the FTP server from the outside.I configured the NAT rules to open the FTP port 21 and configured dyndns on the new router also. On the old router all I needed to do to get it to work was configure dyndns and open port 21. However this doesn't work on the new one and I have no clue what the problem could be.I tried reaching it via its domain name and also tried the public ip address but none of them worked. The Network disk is connected to the new Router the same way as it was connected to the old one. The only thing that has changed is the new router. So the problem must lie somewhere in my configuration, as I havent touched anything else.
View 13 Replies
View Related
Jun 9, 2011
I just setup an account at [URL],and I want to set it up in my router. I have a D-link DIR 655 with firmware 1.21 and when I set it up under dynamic dns it wont connect. It'll say "connecting" then disconnect right afterwards. I have my host name and log in information correct.
Is my firmware causing me this issue?
View 19 Replies
View Related
Dec 9, 2012
I'm trying to determine whether Cisco has any equivalent (in any platform) to some of the existing firewall rules within our iptables infrastructure. [code] What this does, is allow port forwards on port 3389/rdp. However, if a single IP opens too many connections within a timeframe, it starts dropping new ones.This is a critical requirements for certain security scenarios, such as preventing RDP brute forcing. A similar principle can be applied to 22/ssh.I've had a look around, rate limiting searches generally land me on QoS based discussions. I've seen people ask similar questions and get referred to CBAC. Whilst I can see similarly worded functions there such as limiting "half open" connections, I don't see anything there that limits the actual number of connection attempts you can make.
View 1 Replies
View Related
Nov 30, 2011
I recently moved out of state and have been working remotely. I just got a new internet provider who will not let me connect to my office VPN without a small business account which is ridiculous. I've been reading up on how to work around this and haven't been able to figure anything out. I've signed up for a dynDNS account but the truth is I have zero experience with this and don't know what I'm doing - most of the stuff I'm reading is a foreign language to me. I can log into my router and change settings and I can get VPN info from my tech person and work so I just need to know what to do. I can't really work effectively without access to my network but I refuse to pay for a small business account
View 5 Replies
View Related
Feb 23, 2012
Trying to set up remote access to webcam. Signed up with dyndns.org for Hostname, but when I try to set up the DDNS Service Settings in the webcam firmware it continually gives 'Bad reply from server' and I'm pretty clueless when it comes to networking! As far as I can see it requires a User name and Password plus the newly acquired Hostname as shown [URL]
View 7 Replies
View Related
Mar 29, 2011
I have a SR520 where WAN configured as PPPoE with Dyndns address. I have done all the configuration through the CCA, so far everything is working fine. But now i want to configure SSL VPN, but I have getting an error message : SSL VPN cannot be configured, please configure wan interface using a static IP address. Is there any way that I can configure the ssl vpn through a dyndns address?
View 5 Replies
View Related
Aug 21, 2011
It's been a while since I've done a lot with a PIX config so what is the best way to allow access for 2 IP addresses that need to RDP into a server here inside our network. They also wanted to have ports redirected, 3391 to 3389 and 3397 to 3389.
View 12 Replies
View Related
Oct 28, 2012
I've got a machine on my home network running Windows Server 2012 (Based on Win8).The problem is, my taskbar disappears completely.When I minimize an application rather than minimize to the taskbar it simply closes the window as small as it can as if the taskbar never existed (see photos at bottom).
The problem first presented itself after I accessed the computer from outside my local network I'm using a Linksys router and mapping to the server IP, port 3389.After a restart the problem goes away, I will update when I have more information on how frequently or what may trigger.
View 2 Replies
View Related
Nov 15, 2011
I want to configure a remote VPN for our clients on Cisco ASA 5510 using Dyn DNS as I dont have static IP address.
View 9 Replies
View Related
Jul 26, 2012
ISP: comcast
Router: DIR-655
Hardware Version: B1
Firmware Version: 2.04NA
Currently, I have a machine attached to the router that has a webserver and ssh (fedora linux). The ports are successfully forwarded (in this case, tcp 80, and tcp 22), and from outside of my network I can connect. Also, I use dyndns.com to provide a domain name, instead of using my IP. The dyndns account is NOT managed by the router.The server I am trying to connect to has a reserved IP address.My problem is that from inside of my network, using the dyndns domain name, I cannot connect to my site.
View 10 Replies
View Related
Aug 19, 2011
I have the DIR-655 Rev B with the 2.03NA firmware and am trying to get the dyn dns feature to work. Unfortunately it will not push the IP address to my dyndns account. I have all the correct settings in the panel but still nothing next to the status line.I've double checked all my settings but still no joy.Any way to get dyndns to work?
View 5 Replies
View Related
Aug 15, 2012
The local router is behind a fiber firewall/router; the rvs4000's ext ip is thus 192.168.1.2, not visible from the net. The firewall/router is a dyn ip, with a dyn dns name mapping to it. The remote (some NetGear thing) is also dyn dns, but it is not behind a firewall.
I want to cook a vpn from the local lan subnet to the remote lan subnet.
It worked fine when both ends were NetGear.
I think it would be ok if somehow I could thell the rvs4000 that the local Security Gateway Type be just FQDN; it can't be IP+FQDN because the remote end doesn't know anything about that kind of thing; it can do IP or FQDN or a couple other confusing things.
View 2 Replies
View Related
Apr 11, 2013
I am using DynDNS in lieu of a static ip. My ISP changed my WAN ip last night as expected however the RV180W did not update the WAN ip, and so the router is now offline. Using a secondary internet connection I have logged into DynDNS.com and checked my hosts file and confirmed the ipa has not updated since March. I changed the update period from 360 to 2 so this never happens again, but I need to now change the WAN ipa in the RV180W to match the new one. I remember a screen that shows the current WAN ip address greyed out under the present one, but I dont recll where to go to get to that. I am at a loss as to where I go in the RV180W to change the WAN ip address.
View 1 Replies
View Related
Apr 18, 2012
1. I could not make an inbound access rule work for RDP. It is configured as follows WAN -> LAN for RDP (TCP 3389) , it didn't work even when I chose "All Traffic".
2. Single Port Forwarding seems to be working though.
3. Destination IP and QoS settings seem to be grayed out, I would like to know why.
View 2 Replies
View Related
Nov 7, 2012
I have an ASA pair configured to replace a router that hosts a collection of IPSec Tunnels. Tunnels appear to work. I am lab'ing some additional controls that I would like to implement. On the Production Router that i plan to replace with the ASA's the current Tunnels are all wide open (all traffic allowed to pass). I was hoping to lock things down a little without having to reconfigure all of the Tunnels. My though was that an ACL on the Inside Interface blocking selected traffic Out (so into the LAN) should not impact the stability of the Tunnels but allow me to restrict some traffic from entering the LAN. One port that I was attempting to block is RDP 3389. When this ACL is applied to the inside interface it does not block Port 3389 at all. What am I missing? Is it that the trffic is being allowed because it is coming through one of my 'open' Tunnels?
Shouldn't IPSec Tunnel traffic be processed by the Inside Interface ACL just like all other traffic?
access-list 145 deny tcp 192.168.30.0 0.0.0.255 10.187.10.0 0.0.0.255 eq 3389
access-list 145 deny tcp 192.168.30.0 0.0.0.255 10.187.10.0 0.0.0.255 eq 135
access-list 145 deny tcp 192.168.30.0 0.0.0.255 10.187.10.0 0.0.0.255 eq 137
access-list 145 deny tcp 192.168.30.0 0.0.0.255 10.187.10.0 0.0.0.255 eq 138
access-list 145 deny tcp 192.168.30.0 0.0.0.255 10.187.10.0 0.0.0.255 eq 139
access-list 145 deny tcp 192.168.30.0 0.0.0.255 10.187.10.0 0.0.0.255 eq 445
access-list 145 deny tcp 192.168.30.0 0.0.0.255 10.187.10.0 0.0.0.255 eq 389
access-list 145 permit ip any any
ip access-group 145 out interface Internal
This work great on a 2821 Router, but not so much on the ASA.
View 11 Replies
View Related
Mar 23, 2011
I have tried to search for an answer on the forum but I cannot find the correct answer to my issue. I'm having a problem where my dir655 updates the wrong ip adress to dyndns server. It always report 255.255.255.255. The dyndns information is all entered correctly and says "connected" in the dyndns configuration. So what is wrong with the adress update from the dir-655 to the dyndns server ? Of course I cannot use my dyndns adress since it is always at the wrong adress.
View 16 Replies
View Related
Sep 3, 2011
Everythings works great except thee fact that my DIR-615 router
(Hardware Version: H1 Firmware Version: 8.00) logs the following error :
[SYSTEM]: DDNS error connecting to members.dyndns.org:80
View 6 Replies
View Related
May 6, 2012
I am trying to have the RV220W router auto-update the dyndns registration. The dynamic domain that I use is .info -- note the .info domain.
When I manually update the dyndns information (username and password) the registration does go through and the entry is updated on the dyndns site.
However, the registration does not auto-update after that.
View 6 Replies
View Related
Mar 20, 2011
I just bought the WAG120N today, firmware version is v1.00.16. I've face a problem as subject, the following print screens show my configuration on router and DynDNS. I confirm the username and password is correct.Screen 1:
[code]....
View 5 Replies
View Related
Dec 29, 2011
I'm currently running a BEFSR41 V3 router with firmware version 1.05.0 It seems that there is no update retry if the dyndns server is temporarely unavailable. Is it possible to initiate an update via command line or is a new firmware update available to solve this issue?
View 1 Replies
View Related
