Yashy
asked on
Restricting RDP with Windows Firewall....but it doesn't work?!
peeps,
I'm trying to restrict RDP access so that only people on the WAN and LAN can access the terminal services box, along with the possibility of a few external IP addresses. We're on Windows 2008. In Windows Firewall, I've gone into 'Inbound Rule' and chosen RDP->Properties->Scope.
Within the scope, I've added the internal range which is 10.0.0.1-10.0.0.254.
Then I've added the external IP. Apply, OK.
If I try to log onto remote desktop using the local IP 10.0.0.15 (that's the IP), it won't connect me. If I enter the external IP, then it does.
Does anybody know why this happens? And how this can be fixed?
Thanks a lot
I'm trying to restrict RDP access so that only people on the WAN and LAN can access the terminal services box, along with the possibility of a few external IP addresses. We're on Windows 2008. In Windows Firewall, I've gone into 'Inbound Rule' and chosen RDP->Properties->Scope.
Within the scope, I've added the internal range which is 10.0.0.1-10.0.0.254.
Then I've added the external IP. Apply, OK.
If I try to log onto remote desktop using the local IP 10.0.0.15 (that's the IP), it won't connect me. If I enter the external IP, then it does.
Does anybody know why this happens? And how this can be fixed?
Thanks a lot
ASKER
No errors, it just won't connect and then times out with the error message. But I know that it's the firewall.
Yes, I can definitely ping the server.
As soon as I remove the IP address from the 'Remote IP' section within the Scope, I can log on locally.
Yes, I can definitely ping the server.
As soon as I remove the IP address from the 'Remote IP' section within the Scope, I can log on locally.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
You Tom, deserve a fat medal. Thank you.
:) Glad to help.
Regards
Regards
Thanks very much, this helped me too. It's been driving me up the wall for a couple of days now.
Cheers
Steve
Cheers
Steve
what error are you getting? Can you ping 10.0.0.15?
Regards,
Tomislav