Solved

Remote Desktop Connection setup on Windows 2008 Web Server and firewall ports

Posted on 2010-11-23
8
795 Views
Last Modified: 2012-05-10
I want to setup  my remote desktop connection to allow someone to call into my windows 2008 web server and look at my IIS7 and event logs and make sure everything is setup properly, etc.

I need to setup my firewall to allow them in:
1) how can I setup my firewall to allow them to specifically log into THIS machine and not the machine that is assigned to the firewall? I'm using Netgear Prosafe.
2) what ports should I setup for the services and what type?

The last time I did this, the user could only log into the IP address that was assigned to the firewall. Is there a way it can be setup so that they can log into the actual box needed?

3) How do I setup the Windows 2008 Web server to turn this feature on?

I need step by step instructions.

thanks!
0
Comment
Question by:BobCSD
8 Comments
 
LVL 10

Expert Comment

by:moon_blue69
Comment Utility
TCP port 3389

0
 
LVL 4

Accepted Solution

by:
DigitalTyrant earned 250 total points
Comment Utility
Microsoft Remote Desktop uses port 3389.  You would want to forward the port to you server using the Prosafe.  If you already have 3389 mapped to a different computer you can forward any port, preferable above 5000 to port 3389 of the server.  If you have chosen to use a port other than 3389 you can simply specify the port when connecting, ie. server:port.  
To enable Remote Desktop on your server, click the start menu, right-click on computer and click the Remote Settings link in the left pane.
0
 
LVL 10

Assisted Solution

by:moon_blue69
moon_blue69 earned 250 total points
Comment Utility
Right click -> my computer -> romote tab under remote deskto select allow and add the user whom you want to let connect to the server. On your router forward TCP port 3389 - you might find it as RDP. to the ip of your web server . I think thats it
0
 
LVL 11

Expert Comment

by:louisreeves
Comment Utility
2008 SBS has a great feature called remote web workplace. If you do not have SBS then TS WEB access is great. You can hit your machine with a Web browser over port 443. The less port you have to forwad, the better. Truthfully, you  can use TSWEB with any port you wuish:
http://technet.microsoft.com/en-us/library/cc771908(WS.10).aspx

By the way I love these Guys:
http://www.virtualizationadmin.com/articles-tutorials/terminal-services/general/windows-server-2008-terminal-services-web-access-part1.html

Isnt this the way to access your server now?  I love RWW better bu this is great for standard 2008


0
Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

 
LVL 1

Author Comment

by:BobCSD
Comment Utility
When I setup the services, it offers TCP and UDP, but not RDP. I setup both TCP and UDP to a port over 5000 that isn't being used.

Then on my firewall, I have an inbound service to always allow both the tcp and udp Remote Desktop services I just setup, to the remote IP destination, and the LAN address for this box.

I get an error that the computer can't connect.
I'm using the remote IP and the port like so:
computer: xx.xx.xx.xx:xxxx
User Name: xxxx
I setup an administrative user and am putting in their user name.

Then pressing "Connect"
I  have tried this on two computers. One says it is one of 3 problems:
1) remote access is not enabled
2) remote computer is turned off
3) remote computer is not available on the network.

The other computer errors saying:
The computer can't connect to the remote computer.

I know it's turned on.
I enabled it via the methods you told me. Both in the netgear firewall setup and in the windows firewall.
I'm logging in with the custom port. The windows firewall and netgear firewall use the custom port.
The user is created as an administrator. I'm giving that user name.

Any ideas?

thanks.
0
 
LVL 1

Author Comment

by:BobCSD
Comment Utility
Okay, I get now what you were saying about RDP, the build-in service. I'll try that without the custom port.
0
 
LVL 1

Author Comment

by:BobCSD
Comment Utility
woo hoo! got it! thanks! I guess I'll just forego the custom port and disable it when I dont' need it. thanks!
0
 
LVL 1

Author Closing Comment

by:BobCSD
Comment Utility
Thanks!
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now