Solved

Cannot RDP to ISA server from external connection.

Posted on 2009-04-12
8
733 Views
Last Modified: 2012-05-06
Windows SBS 2003 has ISA installed, and used to route RDP requests to a terminal server.  I would like to provide remote access directly to the SBS server instead now.  The router IP is 10.0.0.1, the external NIC on the SBS is 10.0.0.253 (internal is 192.168... but not used anymore).  In the router, I enable RDP to 10.0.0.253 (port 3389).  Yet I cannot RDP to the server from an external connection.  Even if I stop the ISA and Windows Firewall services, I still cannot RDP to to the server from an external connection.  Internal RDP connections work fine if I plug in to the 192.168.... line.  What is preventing me from RDPing to the SBS server?  
0
Comment
Question by:RadRichie
  • 4
  • 2
8 Comments
 
LVL 12

Expert Comment

by:coredatarecovery
ID: 24127252
The external nic at 10.0.0.253 is an internal address.

You MUST forward your External packets for port 3389 on the physical Internet address side of the firewall to your 10.0.0.253 internal address.

Can you log into your firewall device?
0
 
LVL 12

Expert Comment

by:coredatarecovery
ID: 24127623
you need to add a pass thru for port 3389 in your firewall to forward your packets to your internal ip address of the server.

10.x.x.x is a private address.

If you need you IP address http://www.coredatarecovery.com/ip.shtml will echo back your IP address

This is the IP address (Once the pass thru is setup that will be used from outside to access the rdp)

you can check your connection with a port scan from the web at www.grc.com

0
 
LVL 1

Author Comment

by:RadRichie
ID: 24129231
The router advanced settings have RDP mapped to 10.0.0.253, the "external" IP from ISA's perspective.
If I turn off the MIcrosoft firewall service, I can RDP from the server to itself (10.0.0.253), but not to it from an external line.  
0
Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

 
LVL 1

Author Comment

by:RadRichie
ID: 24129474
This is fixed.  ISA server had one of many RDP rules that mapped RDP to the old terminal server.  Once the IP address in that rule was changed to the SBS, RDP from external worked fine.
0
 
LVL 12

Expert Comment

by:coredatarecovery
ID: 24129821
Very Cool.
0
 
LVL 12

Expert Comment

by:coredatarecovery
ID: 24129878
I'm glad to have been of service to you.
0
 

Accepted Solution

by:
ee_auto earned 0 total points
ID: 25216760
Question PAQ'd, 300 points refunded, and stored in the solution database.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

So the following errors occurs in 2 ways that I am aware of at this stage, and you receive one of the following error messages: ERROR 1. When trying to save a rule: No Web listener is specified for the Web publishing rule Autodiscovery Publishin…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now