Solved

Rdp via upnp

Posted on 2006-11-08
5
1,198 Views
Last Modified: 2008-02-01
To give RDP external mgt to servers and let users remotely access desktops I was using UPnP to forward firewall external IP address with port number that through upnp transates to internal IP and rdp port.
I.E. RDP to 123.241.3.85:50009  Firewall/UPnP 192.168.2.24:3389
I was recently told this very insecure (obviously hacker can try this port), but also told that most firewalls do not filter ports in this high of range (what is consequence of not filtering if this is the case?). I was trying to avoid managing Desktop vpn software (this is from XPpro to XP pro, or Xppro to win2003 server), and have had little luck configuring xp native vpn connection. Thanks, experts
0
Comment
Question by:AndykEE
5 Comments
 
LVL 11

Accepted Solution

by:
billwharton earned 250 total points
ID: 17911637
Your best bet is to use a single Windows 2003 server to give VPN access to users. You are currently using a solution that isn't very secure and not scalable.

Even better, invest in a small business firewall if that's what you have like the Cisco ASA 5505 or one from the other vendors for a few hundred bucks and that'll provide you pretty good VPN access into your network
0
 
LVL 51

Assisted Solution

by:Keith Alabaster
Keith Alabaster earned 250 total points
ID: 17921308
Hmmm. You have to be pragmatic about these things. opening any port for any protocol is a security risk by definition as you are opening a hole in your perimeter. You need to weigh up the pro's & con's for your scenario. Limiting the addresses to known sources is one way but this does not fit in with upnp which is, of course, dynamic.

I would agree that having a device to front this traffic would likely be the best way forward; even some of the simple adsl routers will often let you enter in the source addresses that are allowed to access a protocol.
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.
Need to grow your business through quality cloud solutions? With everything required to build a cloud platform and solution, you may feel like the distance between you and the cloud is quite long. Help is here. Spend some time learning about the Con…

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now