Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.
Course Of The Month
8 days, 11 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
how to open port 3389 on DIR-655
Posted on 2013-01-05
I try to RD my server from outside of my office by using DDNS service. The router that i use is Dlink DIR-655 model, i have already set port forwarding that is port 3389 to my IP server but when i checked the port at www.canyouseeme.org the result shown that; it could see the service on IP on port(3389). So how should i set up the router to make the web checking see the port?
Thank you in advance for the answering
Thank you in advance for the answering
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3
2
2- +3
10 Comments
Active 1 day ago
check the manual here
http://www.dlink.com/us/en/home-solutions/connect/routers/-/media/Consumer_Products/DIR/DIR%20655/Manuels/DIR655B1manual070312v23pdf.pdf
Look at port forwarding section
http://www.dlink.com/us/en/home-solutions/connect/routers/-/media/Consumer_Products/DIR/DIR%20655/Manuels/DIR655B1manual070312v23pdf.pdf
Look at port forwarding section
Follow the steps mentioned in this link
Just replace it your port number and application.
http://www.cctvcamerapros.com/D-Link-Port-Forwarding-s/286.htm
Ded9
Just replace it your port number and application.
http://www.cctvcamerapros.com/D-Link-Port-Forwarding-s/286.htm
Ded9
Here is another link to port forward Remote Desktop.
http://portforward.com/english/routers/port_forwarding/Dlink/DIR-655/Remote_Desktop.htm
http://portforward.com/english/routers/port_forwarding/Dlink/DIR-655/Remote_Desktop.htm
Active today
It sounds like you already have it setup correctly.
i.e. that site *should* say
Success: I can see your service on
your.ip.addr.ess on port (3389)
Your ISP is not blocking port 3389
If you mean how do you make it work, from the remote site when prompted for the machine you want to connect to in Remote Desktop, you enter
yourcustom.DDNS.domain
as the remote computer then click Connect...
To enable Remote Desktop inbound, click the 'start' orb, type in sysdm.cpl and click the one that appears at the top, under Programs (1).
Go to the Remote tab
Pro, Enterprise and Ultimate will look like
Home Premium, Home Basic and Starter versions will look like 
XP Pro looks like 
(Start->Run, sysdm.cpl [Enter]) - sorry, I don't have a copy of XP Home to get a screen shot.
When making those settings above with Windows Firewall enabled, it should automatically open TCP port 3389 in the firewall for you.e.g.
or, in XP 
If Windows Firewall was disabled at the time it WON'T automatically make the opening... in that case, enable the firewall, disable remote access on the Remote tab, Apply/OK, then re-enable remote access on the Remote tab and it should make that opening on port 3389 for you in Windows Firewall.
If using a 3rd party firewall, consult its documentation for opening TCP 3389 inbound.
Note that you should be able to make a Remote Desktop Connection to any version of Windows like that, but to initiate a Remote Desktop Connection you must be on a Professional or higher (e.g. Enterprise or Ultimate) version of windows.
edit: Hmmmm - I always thought that last statement was true, but I was just able to make a connection *from* Win7 Home Premium to a remote XP Pro machine, and I don't remember doing anything special to enable that.
i.e. that site *should* say
Success: I can see your service on
your.ip.addr.ess on port (3389)
Your ISP is not blocking port 3389
If you mean how do you make it work, from the remote site when prompted for the machine you want to connect to in Remote Desktop, you enter
yourcustom.DDNS.domain
as the remote computer then click Connect...
To enable Remote Desktop inbound, click the 'start' orb, type in sysdm.cpl and click the one that appears at the top, under Programs (1).
Go to the Remote tab
Pro, Enterprise and Ultimate will look like
Home Premium, Home Basic and Starter versions will look like 
XP Pro looks like (Start->Run, sysdm.cpl [Enter]) - sorry, I don't have a copy of XP Home to get a screen shot.When making those settings above with Windows Firewall enabled, it should automatically open TCP port 3389 in the firewall for you.e.g.
or, in XP If Windows Firewall was disabled at the time it WON'T automatically make the opening... in that case, enable the firewall, disable remote access on the Remote tab, Apply/OK, then re-enable remote access on the Remote tab and it should make that opening on port 3389 for you in Windows Firewall.
If using a 3rd party firewall, consult its documentation for opening TCP 3389 inbound.
Note that you should be able to make a Remote Desktop Connection to any version of Windows like that, but to initiate a Remote Desktop Connection you must be on a Professional or higher (e.g. Enterprise or Ultimate) version of windows.
edit: Hmmmm - I always thought that last statement was true, but I was just able to make a connection *from* Win7 Home Premium to a remote XP Pro machine, and I don't remember doing anything special to enable that.
As an aside I would suggest you change the listening port from the standard 3389 to something non-standard
Using the standard port you are at risk of concerted dictionary attacks
There is a Microsoft fixit to do this just google change listening port for relevant articles
Using the standard port you are at risk of concerted dictionary attacks
There is a Microsoft fixit to do this just google change listening port for relevant articles
Looking at the screenshots - I think you also need to enable the RDP port in the "firewall section settings of your router" -That is probably why it works on internal Ip but not externally?
ie. The port forwarding rule marks where to pass the traffic but the firewall is not allowing the inbound traffic on that port to be passed ?
ie. The port forwarding rule marks where to pass the traffic but the firewall is not allowing the inbound traffic on that port to be passed ?
Active today
In fig2.png, you're forwarding TCP 3389 on the outside to UDP 3389 on the inside (should be TCP 3389 on the inside, too).
Since your router's port forwarding allows specifying different outside and inside ports (not all do), you don't *need* to change the port RDP listens on in the registry... just change the outside port on the router, to, say, TCP 33344, and the inside port to TCP 3389... then when you tell Remote Desktop where to connect, use
yourcustom.DDNS.domain:333
and click Connect.
The router should then forward that to 192.168.0.44 TCP port 3389 on the inside.
Then you could forward a different outside port to a different inside IP address on port 3389.
The registry change to make RDP listen on a different port is to allow multiple windows computers to be accessed remotely on the routers that DON'T allow specifying different outside and inside ports in their Port Forwarding setups, not to make Remote Desktop more secure.
You make Remote Desktop secure by employing 7+character complex passwords that use mixed-case letters, numbers and symbols (like !@#$% et al). If you use a 10-character complex password, composed of the 94 characters allowed in passwords by windows, a hacker trying 5,000,000 combinations per second would take over 3 trillion millennia to go through every combination.
Since your router's port forwarding allows specifying different outside and inside ports (not all do), you don't *need* to change the port RDP listens on in the registry... just change the outside port on the router, to, say, TCP 33344, and the inside port to TCP 3389... then when you tell Remote Desktop where to connect, use
yourcustom.DDNS.domain:333
and click Connect.
The router should then forward that to 192.168.0.44 TCP port 3389 on the inside.
Then you could forward a different outside port to a different inside IP address on port 3389.
The registry change to make RDP listen on a different port is to allow multiple windows computers to be accessed remotely on the routers that DON'T allow specifying different outside and inside ports in their Port Forwarding setups, not to make Remote Desktop more secure.
You make Remote Desktop secure by employing 7+character complex passwords that use mixed-case letters, numbers and symbols (like !@#$% et al). If you use a 10-character complex password, composed of the 94 characters allowed in passwords by windows, a hacker trying 5,000,000 combinations per second would take over 3 trillion millennia to go through every combination.
Fully agree with the above
I was Just keeping it simple by changing the port on the server rather than port mapping on the router (you will note I did not have the benefit of the screenshots in my original post)
But as I have pointed out this still needs the firewall to pass the packets however the forwarding is set up
(Your stats assume the hacker does not get lucky first time or use social engineering to trick the user into revealing even the most complex password,etc)
Personally I use 8+ digit passwords with complex symbols and alpha numerics
I was Just keeping it simple by changing the port on the server rather than port mapping on the router (you will note I did not have the benefit of the screenshots in my original post)
But as I have pointed out this still needs the firewall to pass the packets however the forwarding is set up
(Your stats assume the hacker does not get lucky first time or use social engineering to trick the user into revealing even the most complex password,etc)
Personally I use 8+ digit passwords with complex symbols and alpha numerics
Featured Post
What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
If you get continual lockouts after changing your Active Directory password, there are several possible reasons. Two of the most common are using other devices to access your email and stored passwords in the credential manager of windows.
There are many software programs on offer that will claim to magically speed up your computer. The best advice I can give you is to avoid them like the plague, because they will often cause far more problems than they solve. Try some of these "do it…
This Micro Tutorial will teach you the basics of configuring your computer to improve its speed. It will also teach you how to disable programs that are running in the background simultaneously.
This will be demonstrated using Windows 7 operating…
This Micro Tutorial will give you basic overview of the control panel section on Windows 7. It will depth in Network and Internet, Hardware and Sound, etc.
This will be demonstrated using Windows 7 operating system.
Suggested Courses
Earn Certification
HTML5 Specialist - Certification
Free withPremium
Course of the Month8 days, 11 hours left to enroll
617 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.