?
Solved

Sonic Wall Problem with RDP, works for one port but not for the other.

Posted on 2006-06-01
5
Medium Priority
?
423 Views
Last Modified: 2012-08-13
Hi, I'm trying to help a friend who runs a sonic wall firewall.

It's been configured to route RDP/RDC to two seperate PC's depending on the port passed in. To hit computer A you use IP xxx.yyy.zzz.1:6000, to hit computer by you use IP xxx.yyy.zzz.1:7000. Everything was working fine until my friend hired a half-baked "network guy" to add an FTP hole, and suddenly one of the RDC forwards isn't working.

The RDC PC on port 7000 in question works fine inside the network when using the local ip:7000 (so, we've isolated it to the sonic wall). Working through the sonic wall settings, everything seems fine (nat translation, access list, etc). PC A and B both have similar settings, only with unique destination IP addresses that point to PC A and B respectively. I just don't get it!

I think something is overriding and blocking this one  IP, any suggestions where I can look?

Thanks,

Terry
0
Comment
Question by:TerryBurger
  • 2
3 Comments
 
LVL 15

Expert Comment

by:nprignano
ID: 16825715
have you checked the forwarding rules?

have you tried deleting the afflicted RDP rules and recreating?  how about changing the client PC to a new port and creating a new rule for this port?


nprignano
0
 

Author Comment

by:TerryBurger
ID: 16825767
I haven't deleted the rule or changed the port, but I guess those are decent ideas. Thanks.


T
0
 
LVL 15

Accepted Solution

by:
nprignano earned 2000 total points
ID: 16837784
may have found your problem.  port 7200 is used by a particular protocol - fodms (not sure what it is).  when using ports for custom applications (like changing the listening port of the Remote Desktop Connection client) its best to use an unused port number.  I usually use ports in the 9010 - 9099 range.  The sonicwall may have gotten an update that blocks port 7200 by default if its found that port 7200 is a security risk.  you are best off rethinking the port you use for this.

http://www.auditmypc.com/port/udp-port-7200.asp
http://isc.sans.org/port_details.php?port=7200


nprignano
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Hello , This is a short article on how would you go about enabling traceoptions on a Juniper router . Traceoptions are similar to Cisco debug commands but these traceoptions are implemented in Juniper networks router . The following demonstr…
Problem Description:   Couple of months ago we upgraded the ADSL line at our branch office from Home to Business line. The purpose of transforming the service to have static public IP’s. We were in need for public IP’s to publish our web resour…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

862 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question