Link to home
Start Free TrialLog in
Avatar of judyhz
judyhz

asked on

Disabled GPO Firewalls; still can't RDC or ping workstation

I'm trying to use RDC to connect from home to my network server (thorugh a firewall), then from the server to a workstation in the domain. I have no trouble getting to the server (SBS2003), but Windows Firewall was enabled on the workstation and I had Global Policies in place to enable the firewall--these are now disabled. I still can't ping the workstation (by IP or domain name)--do I need to reboot the workstation or reset something locally in order for the policy to take effect? I've read something about ADM files needing to be refreshed; can I do this from the server?

thanks!

Avatar of judyhz
judyhz

ASKER

keith,

I'm not sure how my predecessordeveloped the policies. I've disbled the firewall policy manually.
Avatar of Robberbaron (robr)
Robberbaron (robr)
Flag of Australia image
can you RDC to the workstations from the server when at work?

Have you tried using the Connect to Desktops from SBS RWW to directly connect rather than RDC to server desktop first ?

How do you RDC to server ?  VPN or RWW ?
Avatar of judyhz
judyhz

ASKER

I haven't tried RDC from server to workstation at work, but I can RDC from workstations to server.
Haven't tried RWW--does it give the same local functionality as RDC?
Not sure about this last question--I'm using RDC client to server, with a pass-through the firewall. Not using it over a VPN, but not sure how RWW works.
Avatar of Robberbaron (robr)
Robberbaron (robr)
Flag of Australia image

1. need to check this as if fails, then no chance doing it remotely.
2. RWW is a front end. From there you can select to "Connect to server desktops" (if Domain Admin) or "Conncet to Workstation desktops" ; exactly RDC. I use it all the time.

3. Obviously not using RWW or VPN!  You have openned a hole in your firewall.
        RWW is an intermediate step as is creating a VPN that improves security.

I recommend looking into using RWW (Remote Web Workplace). Installed by default I think. Lets you look at CompanyWeb / Sharepoint as well.
Avatar of jm-johnmeyer-us
jm-johnmeyer-us
Did you actually go into control panel on the workstation and disable windows firewall?  If the workstation let you turn off windows firewall, then you know the group policy settings change worked.

Your previous administrator could have put some manual filters into routing and remote access (on the Server) that would further block RDC but this is very difficult -- let me know if you want to know how to check those.

I am able to RDC to my workstations from my server.  I don't use RWW.

Any network devices between server and workstation?
Avatar of judyhz
judyhz

ASKER

I am home right now; I changed the global policy Friday night. I believe the workstation is powered up but no one is logged in; it's my understanding that the changed local policy (at the workstation) should have refreshed by now (I reset the refresh rate to 1 hour in the GPO). I'll need to check tomorrow morning to see if either the firewall is now disabled as a result of the policy or if I can disable it locally. I really want to understand exactly what comes into play for remote access through the server so I can make everything right & document it. That's why I prefer not to fool around with other fixes/protocols until I understand what effect RDC (and associated policies & filters) has on my net.

I am willing to up the points to whatever you want if you'll take the time to create a narrative or list what else I might look into--this would be very useful now but generally instructive for me.

Finally, there are no network devices between the server and workstation. I am able to access other devices on the net (SNMP, ping)...

thanks for your response...
ASKER CERTIFIED SOLUTION
Avatar of jm-johnmeyer-us
jm-johnmeyer-us
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial