CoolDev2014
asked on
Netgear Firewall and RDP
I have netgear firewall and I want to do two things.
1. Be able to allow RDP to all pcs, and I read below link and it tells me each pc must have static IP. Is it truth?
http://www.buildeasypc.com/category/software/port-forwarding-for-windows-remote-desktop-on-netgear-dg834ggtn-router.htm
2. Set up static IP to each PC
I did check the firewall and have the following information.
IP: 72.54.249.50
IP Subnet Mask: 255.255.255.252
Primary DNS: 66.180.85.111
Secondary DNS: 64.239.55.222
In the each pc that I am going to set up the IP. What should i fill in below:
IP Address:
Subnet Mask:
Default gateway:
Preferred DNS
Alternative DNS
Thanks
1. Be able to allow RDP to all pcs, and I read below link and it tells me each pc must have static IP. Is it truth?
http://www.buildeasypc.com/category/software/port-forwarding-for-windows-remote-desktop-on-netgear-dg834ggtn-router.htm
2. Set up static IP to each PC
I did check the firewall and have the following information.
IP: 72.54.249.50
IP Subnet Mask: 255.255.255.252
Primary DNS: 66.180.85.111
Secondary DNS: 64.239.55.222
In the each pc that I am going to set up the IP. What should i fill in below:
IP Address:
Subnet Mask:
Default gateway:
Preferred DNS
Alternative DNS
Thanks
pgm554
If you are trying to RDP from outside of you LAN (internet) ,you will need a static IP from your ISP or a dynamic dns account as most ISP's will give you a dynamic IP address that can change after a while of use.
I agree with the above in principle.
I have a Cisco RV042G VPN router in my home office. The ISP gives me a dynamic IP that changes but rarely. I set up tunnels to clients who have static IP addresses (businesses) and the tunnels stay up for a year or more before having to change the my home office IP in the client setups.
You can also use DYNDNS and that will do what you want on the dynamic end.
At least one end in your arrangement above must have a static IP address for workable results.
http://dyn.com/dns/
I have a Cisco RV042G VPN router in my home office. The ISP gives me a dynamic IP that changes but rarely. I set up tunnels to clients who have static IP addresses (businesses) and the tunnels stay up for a year or more before having to change the my home office IP in the client setups.
You can also use DYNDNS and that will do what you want on the dynamic end.
At least one end in your arrangement above must have a static IP address for workable results.
http://dyn.com/dns/
ASKER
actually, I am trying to RDP INSIDE of the LAN.
See if your LAN firewall is in the way. Also make sure the target machine allows RDP connections (Computer, right click, Properties, Advanced System Properties, Remote Tab and make sure you have allowed Remote Desktop Connections to this computer.
You might try connecting to the IP address of the target computer (in case there is a firewall restrictions).
The two things (connect by IP; and enabling RDP connections) should work.
You might try connecting to the IP address of the target computer (in case there is a firewall restrictions).
The two things (connect by IP; and enabling RDP connections) should work.
ASKER
I try to RDP PC name, and static IP. Both ways are not working.
I already enable ALLOW remote in the target pc. The target pc is window 7 Starter.
I already enable ALLOW remote in the target pc. The target pc is window 7 Starter.
Check internal lan config, probably something like
IP:192.168.1.x (check netgear lan config)
Subnet:255.255.255.0
Gateway: netgear internal lan ip
Dns: netgear internal lan ip
All pc's must have a unique ip. Better make sure it's not in the dhcp range.
Now add rules in the netgear:
Firewall allow traffic to these ip's
Nat/virtual servers:
Assign every pc's ip to a different public port:
For example pc1 ip is 192.168.1.100 assign outside port 5001 to internal port 3389
Pc 2 ip outside port 5002 to inside 3389
Etc.
When you're outside, use:
72.54.249.50:5001
to connect to the pc 1
72.54.249.50:5002
for pc 2 etc.
IP:192.168.1.x (check netgear lan config)
Subnet:255.255.255.0
Gateway: netgear internal lan ip
Dns: netgear internal lan ip
All pc's must have a unique ip. Better make sure it's not in the dhcp range.
Now add rules in the netgear:
Firewall allow traffic to these ip's
Nat/virtual servers:
Assign every pc's ip to a different public port:
For example pc1 ip is 192.168.1.100 assign outside port 5001 to internal port 3389
Pc 2 ip outside port 5002 to inside 3389
Etc.
When you're outside, use:
72.54.249.50:5001
to connect to the pc 1
72.54.249.50:5002
for pc 2 etc.
ASKER
1. IP:192.168.1.x (check netgear lan config) ? where you want me to check?
To know that, I have to know the exact model/type of your netgear device.
ASKER
NETGEAR ProSafe™ Gigabit 8 Port VPN Firewall FVS318G
Also make sure you are using Windows Pro and not Home.
All computers should be on the same subnet. None should be connected to DMZ.
Can you easily PING any computer from any other computer?
All computers should be on the same subnet. None should be connected to DMZ.
Can you easily PING any computer from any other computer?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.