Solved

How do I Remote Desktop to Windows XP on public IP?

Posted on 2008-10-03
7
637 Views
Last Modified: 2013-11-21
I used to have a single static public IP address (let's say it is 66.100.20.5) and I used a Netgear WGR614 router to route to an internet proxy server, and also to port-forward to a PC used to service Remote Desktop Connections (let's say they used private addresses 192.168.1.44 and 192.168.1.45).  

I want to eliminate the router, so I reconfigured the NIC in the proxy server from the private .44 address to use the new public .6 address -- and it worked great. However when I changed the NIC in the RDC service PC to the pulbic .5 address, the client could not connect, even though they should be able to use the same 66.100.20.5 that was used before to go in through the router.
What is the router doing that the direct connection is not?
Many thanks.

   
0
Comment
Question by:projamr1
  • 4
  • 2
7 Comments
 
LVL 3

Expert Comment

by:JJLost
Comment Utility
"from the private .44 address to use the new public .6 address" I didn't see a .6 so is this suppose to be .5?  Do you have port forwarding setup in your proxy server?
0
 
LVL 5

Expert Comment

by:sdschaefer
Comment Utility
Is the RDC service PC's NIC sitting out on the public network?  What is it's default gateway?   Should be 66.100.20.4 or .1 or something.   Does the RDC PC have internet access right now?

0
 

Author Comment

by:projamr1
Comment Utility
JJLost, Sorry that I glossed over the fact that I added a new public IP address, and in the fake ones I am using here it ends in .6 to follow the .5 one.  I am not using port forwarding in the proxy server, instead trying to connect directly.

sdchaefer, Yes, the RDC's NIC should be sitting on the public internet.The default gateway, subnet mask, and IP are the same that the router used to be configured for.

And unfortuantely I am back to using the router, so I can't test anything that is suggested until people are off my network tonight.
0
What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 

Author Comment

by:projamr1
Comment Utility
And it had internet access, only that could have come from a second NIC (that is attached to a LAN with proxy server).
0
 

Author Comment

by:projamr1
Comment Utility
Good question though. When people get off the devices today, I can disable the LAN NIC card and see if I still have internet access via the remaining card.
0
 
LVL 5

Assisted Solution

by:sdschaefer
sdschaefer earned 150 total points
Comment Utility
Oh... (2) NIC's.  I was wondering about.  You will need to remove the gateway entry from the LAN NIC.  No problem having multiple NIC's, but only one gateway can be used at any given time.  In your situation you will have to use the gateway on the public network.  You don't need a gateway on the lan NIC as it's only purpose is to communicate with other nodes on the LAN (not the Internet).
Now all that being said......  If I were trying to accomplish what you are trying to do, I would use only the LAN NIC and map RDP (TCP 3389) down through the proxy server (kinda like it was behind the router).   It is a bad Idea having a NIC attached directly to the Internet (especially with a MS Windows OS) with nothing protecting access to it.  

 




   
0
 

Accepted Solution

by:
projamr1 earned 0 total points
Comment Utility
I'm still not sure why I can connect through a router and not directly - I had a gateway defined that was the router, and when I switched to the direct connection, I used the gateway IP provided by my ISP.

I don't want to go though the proxy server, because I want to be able to bring the proxy server down without knocking out the other connection. (The purpose of having two IP addresses)

No matter though, I will just leave the router there and disable the wifi function. I'll consider it a layer of security
0

Featured Post

Want to promote your upcoming event?

Is your company attending an event or exhibiting at a trade show soon? Are you speaking at a conference? Spread the word by using a promotional banner in your email signature. This will ensure your organization’s most important contacts are in the know.

Join & Write a Comment

Are you one of those front-line IT Service Desk staff fielding calls, replying to emails, all-the-while working to resolve end-user technological nightmares? I am! That's why I have put together this brief overview of tools and techniques I use in o…
Shadow IT is coming out of the shadows as more businesses are choosing cloud-based applications. It is now a multi-cloud world for most organizations. Simultaneously, most businesses have yet to consolidate with one cloud provider or define an offic…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now