Cannot connect to IP Address

Posted on 2005-05-17
Last Modified: 2010-04-09
Hi There

I have a windows 2000 domain with private IP Connect to a checkpoint firewall [ CheckPoingt NG with Aplication Intelligence] I am trying to connect to an external IP address. Actually the IP address is the outside address on of my DSL at home. I have a linksys router and I have configure remote access to my desktop. I can connect to the external IP address from anywhere outside my office and connect to my home PC. But I cannot connect to my home desktop using remote desktop from my office.
I know its the firewall is somehow blocking remote desktop from connecting to the IP address. I open the 3389 port on the FW but still I cannot connect

the Falcon
Question by:FalconTwo
    1 Comment
    LVL 3

    Accepted Solution

    What do your Checkpoint logs say?
    Has your DSL connection got a static IP address? If not (DHCP) is assume you've added a rule for destination of ANY?

    Also you have to ensure that when your connection goes out to the Internet it is routable. Therefore have to hide behind a routable IP address.
    I assume you can web browse from within your office to the Internet? Is so look at the address translation tab on your firewall and see if there is a rule for hide NATing your web connection behind a routable IP address. What service is this for. If the service doesn't include TCP 3389 then either add a rule for this, or add this service to the existing rule.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
    The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
    It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
    Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

    737 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now