Port Redirect, Windows 7 Firewall and Remote Desktop problems

Posted on 2010-08-31
Last Modified: 2013-11-21
So I have mutliple computers on my network (workgroup).  I am trying to set up the abiltiy to remote into them from an outside source.  I have a DynDNS host service configured with my router and its working perfectly.

I have my ports forwarded to the ip addresses of the respective computers on my network (I'm using DD-WRT firmware).  Computer1 port 3389 (default) Computer2 port 3390

I'm running into problems with the windows firewall and now my remote desktop is not working for either (including default port).  Last night I was able to remote in to the default port (on both computers when I switched the forwarding for the ip addresses) so remote desktop is enabled on both machines.  

For the Computer2 with the redirected (or changed) RDP port I have modified the registry HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\portnumber to decimal 3390.  There is a Key entry of EH-Tcp which also has a portnumber string that is the same as RDP-Tcp 3389 (so they are originally the same value).

What is this EH-Tcp?  Do I need to change both (I tried but at least I know whether I need to)?

Once I changed the RDP-Tcp port I restarted the Remote Desktop Services.  However, in the windows firewall there is a rule that has exception Remote Desktop TCP-In Port 3389.  The firewall exception port has not changed even though I changed it in the registry.  Is there a way I can change this port in the firewall?  Or do I add an additonal rule?

Now even with the firewall turned off I am unable to remote in.  Both computers have passwords and I was able to remote in before.  Perhaps if I can get the correct configuration the default port computer will work with the firewall off.

Any suggestions?  

JOe K.
Question by:ClaudeWalker
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2

Accepted Solution

beechy_ earned 500 total points
ID: 33570748
If you do want to run RDP on computer 2 on port 3390, start out by testing within the LAN, connecting to it on port 3390.  Connect from computer 1 to computer 2 so you can be sure the port forwarding isn't causing a problem.  You will need to create a new port rule in the firewall allowing incoming traffic on TCP 3390.

However, another approach which I would take, would be to put remote desktop on computer 2 back to 3389, leaving the default firewall exception in place.  Then configure your router to forward 3389 to 3389 on computer 1 but to forward 3390 to 3389 on computer 2.  Then when you connect to computer 2 within the LAN everything is just as it has always been on 3389 on both computers.  Only when connecting remotely to computer 2 will you need to specify port 3390, your firewall will take care of the port modification to 3390 for you and you should be able to connect remotely.

Expert Comment

by:Imran Saeed
ID: 33574405
have you tried Team Viewer, check the link below. Its very simple to setup and free for personal use and no need to forward any ports etc.

Author Comment

ID: 33579338
So I tried again from work.  I have been able to remote both ways from my LAN and I also have been able to login using an IP address from a computer on the LAN.

Computer1 <----> Computer2 via LAN

Computer1 -- (made up ip:port)---> Computer2 (vice versa)

WorkComputer -- (made up ip:port)---> Computer1(2) does not work

I have added TCP exceptions to those ports in the windows firewall.  Those ports are forwarded correctly in my router. I have been able to remotely administer the router therefore the ip address is correct.  The problem is either the port forwarding (which doesn't make sense) or something in the firewall).  Perhaps I have the security permissions messed up in the software firewall or the remote security is set to high or I have no idea what I'm talking about :)

Any ideas on why this computer outside my network is unable to connect via IP:Port and computers inside my network can connect via IP:Port?

JOe K.


Author Comment

ID: 33579776
Nevermind, I was adding my computer name with my login name which works within the domain however when connecting from outside the domain it only wants a user name and not a computer name

Computer\Username  did not work

Username worked!

Thanks for getting me in the right direction.

JOe K.

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Remote Apps is a feature in server 2008 which allows users to run applications off Remote Desktop Servers without having to log into them to run the applications.  The user can either have a desktop shortcut installed or go through the web portal to…
We recently endured a series of broadcast storms that caused our ISP to shut us down for brief periods of time. After going through a multitude of tests, we determined that the issue was related to Intel NIC drivers on some new HP desktop computers …
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit If you want to manage em…

735 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question