Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Cannot RDP to ISA server from external connection.

Posted on 2009-04-12
8
Medium Priority
?
786 Views
Last Modified: 2012-05-06
Windows SBS 2003 has ISA installed, and used to route RDP requests to a terminal server.  I would like to provide remote access directly to the SBS server instead now.  The router IP is 10.0.0.1, the external NIC on the SBS is 10.0.0.253 (internal is 192.168... but not used anymore).  In the router, I enable RDP to 10.0.0.253 (port 3389).  Yet I cannot RDP to the server from an external connection.  Even if I stop the ISA and Windows Firewall services, I still cannot RDP to to the server from an external connection.  Internal RDP connections work fine if I plug in to the 192.168.... line.  What is preventing me from RDPing to the SBS server?  
0
Comment
Question by:RadRichie
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
8 Comments
 
LVL 12

Expert Comment

by:coredatarecovery
ID: 24127252
The external nic at 10.0.0.253 is an internal address.

You MUST forward your External packets for port 3389 on the physical Internet address side of the firewall to your 10.0.0.253 internal address.

Can you log into your firewall device?
0
 
LVL 12

Expert Comment

by:coredatarecovery
ID: 24127623
you need to add a pass thru for port 3389 in your firewall to forward your packets to your internal ip address of the server.

10.x.x.x is a private address.

If you need you IP address http://www.coredatarecovery.com/ip.shtml will echo back your IP address

This is the IP address (Once the pass thru is setup that will be used from outside to access the rdp)

you can check your connection with a port scan from the web at www.grc.com

0
 
LVL 1

Author Comment

by:RadRichie
ID: 24129231
The router advanced settings have RDP mapped to 10.0.0.253, the "external" IP from ISA's perspective.
If I turn off the MIcrosoft firewall service, I can RDP from the server to itself (10.0.0.253), but not to it from an external line.  
0
Cyber Threats to Small Businesses (Part 1)

This past May, Webroot surveyed more than 600 IT decision-makers at medium-sized companies to see how these small businesses perceived new threats facing their organizations.  Read what Webroot CISO, Gary Hayslip, has to say about the survey in part 1 of this 2-part blog series.

 
LVL 1

Author Comment

by:RadRichie
ID: 24129474
This is fixed.  ISA server had one of many RDP rules that mapped RDP to the old terminal server.  Once the IP address in that rule was changed to the SBS, RDP from external worked fine.
0
 
LVL 12

Expert Comment

by:coredatarecovery
ID: 24129821
Very Cool.
0
 
LVL 12

Expert Comment

by:coredatarecovery
ID: 24129878
I'm glad to have been of service to you.
0
 

Accepted Solution

by:
ee_auto earned 0 total points
ID: 25216760
Question PAQ'd, 300 points refunded, and stored in the solution database.
0

Featured Post

[Webinar] Protection from Cyberattacks

In this session, we’ll dive into the complexities of modern cyber threats and why only multi-vector protection can keep today’s businesses secure through the various stages of a cyberattack, across multiple vectors. Thursday September 14, 2017 10:00 A.M. PDT

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
Forefront is the brand name for Microsoft's major security product. Forefront covers a number of specific security areas and has 'swallowed' a number of applications under this umbrella including Antigen, ISA Server, the Integrated Access Gateway (t…
Video by: ITPro.TV
In this episode Don builds upon the troubleshooting techniques by demonstrating how to properly monitor a vSphere deployment to detect problems before they occur. He begins the show using tools found within the vSphere suite as ends the show demonst…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.
Suggested Courses

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question