Solved

Remote Desktop connection issues - Windows 7

Posted on 2014-03-20
17
1,640 Views
Last Modified: 2014-04-20
I have a couple workstations on my internal domain where I can not establish a remote desktop connection.  When I try to connect to these workstations, I get a "Remote Desk can't connect to the remote computer for one of these reasons:" error.

This is what I have done to try to resolve the issue:
1) Verified that the remote user does have permissions to connect to the workstation
2) Turned off the firewall (we are using F-Secure)
3) Stopped all the F-Secure services
4) Tried to telnet the port "3389", no connection should be established

So it appears that port "3389" is still being blocked somehow.  What is the best way to figure out what is blocking that port on the desktop?
0
Comment
Question by:shrimpfork
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 5
  • 2
  • +2
17 Comments
 
LVL 2

Expert Comment

by:arekkusu82
ID: 39944011
Some questions.
Can you ping the machine (by name and/or ip address)?
Can you ping your machine from the one your are trying to connect to?

You can check what ports are open with CurrPorts. Sometimes, disabling the firewall completely requires that you restart the machine as well. I havenoticed this at leat with the Windows Firewall.
0
 
LVL 13

Expert Comment

by:Santosh Gupta
ID: 39944024
Hi,

Did you checked windows 7 firewall ?
0
 

Author Comment

by:shrimpfork
ID: 39944027
@ arekkusu82:  Yes, I can ping each machine from the other.  I checked the port on the machine that I am trying to connect to using "netstat -ano" and I do not see where port 3389 is listening.  I am not using windows firewall.  F-Secure has an option to allow all connections, which I have also tried.

@ Santosh Gupta:  I am not using windows firewall.  But yes when I went into the windows firewall setting, the Remote Desktop is selected as an allowed program in the domain.
0
To Patch or not to Patch? That is the question!

Don't get caught out like thousands of others around the world in the recent Ransomware Fiasco!
Discuss..
- Why it's not a good idea to wait before Patching
- Sensible approaches to Patching discussed
- Add your feedback, comments and suggestions

 
LVL 13

Expert Comment

by:Santosh Gupta
ID: 39944040
Hi,

Which AntiVirus you are using ??
0
 

Author Comment

by:shrimpfork
ID: 39944044
F-Secure PSB Workstation Security
0
 
LVL 13

Expert Comment

by:Santosh Gupta
ID: 39944064
Hi,

Use the TCPView to check that which port is being used by which process/program.
http://technet.microsoft.com/en-us/sysinternals/bb897437.aspx
0
 
LVL 2

Expert Comment

by:arekkusu82
ID: 39944191
Can you completely disable F-Secure to rule out is not blocking the incoming traffic.

I have Remote Services running on my machine and I can see this under CurrPorts:

System      1800      TCP      3389      ms-wbt-server      0.0.0.0                  0.0.0.0            Listening                                    N/A            CryptSvc, Dnscache, LanmanWorkstation, NlaSvc, TermService            21/03/2014 1:30:02 p.m.                        
System      1800      TCP      3389      ms-wbt-server      ::                  ::            Listening                                    N/A            CryptSvc, Dnscache, LanmanWorkstation, NlaSvc, TermService            21/03/2014 1:30:02 p.m.
0
 
LVL 5

Expert Comment

by:ranadastidar
ID: 39944718
try to use teamviewer
0
 

Author Comment

by:shrimpfork
ID: 39946171
Using TCPView, port 3389 is not listed on the computer that I am trying to connect to.
0
 
LVL 13

Expert Comment

by:Santosh Gupta
ID: 39946207
Please check if "remote desktop services security filter driver" is disabled.

To check whether this enabled or disabled,
open device manager and show hidden devices. if it is not enable it, if it is already enabled, disable and re-enable it.

if unable to enable it, uninstall it and reboot the server.
0
 

Author Comment

by:shrimpfork
ID: 39946242
"Remote Desktop Services Security Filter Driver" is not listed in the devices.  (I compared the list it to a computer that is working.)  So now what?
0
 

Accepted Solution

by:
shrimpfork earned 0 total points
ID: 39946572
So I removed Microsoft Update KB2667402 and the remote desktop is now working.  What is KB2667402 for and do I need it?
0
 
LVL 13

Assisted Solution

by:Santosh Gupta
Santosh Gupta earned 500 total points
ID: 39946593
Hi,

As per Microsoft, This security update resolves two privately reported vulnerabilities in the Remote Desktop Protocol. The more severe of these vulnerabilities could allow remote code execution if an attacker sends a sequence of specially crafted RDP packets to an affected system. By default, the Remote Desktop Protocol (RDP) is not enabled on any Windows operating system. Systems that do not have RDP enabled are not at risk

http://technet.microsoft.com/en-us/security/bulletin/ms12-020

if you dont have puble/internet facing system then you do not need this update.
0
 
LVL 59

Expert Comment

by:LeeTutor
ID: 40001572
I've requested that this question be deleted for the following reason:

Not enough information to confirm an answer.
0
 

Author Comment

by:shrimpfork
ID: 40001573
There is a solution to this question.  I discovered it myself as it was posted.  I just forgot to close the questions.  Please cancel this close request so that I can properly assign points.
0
 

Author Closing Comment

by:shrimpfork
ID: 40011158
I found the solution while searching the web.  The second part of the points, confirmed that I did not need the KB update for my environment.
0

Featured Post

Defend Your Organization from The Greatest Threats

Looking to fill the gaps in your security? Bring together information from the network, endpoint and threat intelligence feeds to really see what's happening in your organization. Join the WatchGuardians in their adventures fighting cyber crime!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

At the beginning of the year, the IT world was taken hostage by the shareholders of LogMeIn. Their free product, which had been free for ten years, all of the sudden became a "pay" product. Now, I am the first person who will say that software maker…
You may have a outside contractor who comes in once a week or seasonal to do some work in your office but you only want to give him access to the programs and files he needs and keep privet all other documents and programs, can you do this on a loca…
This Micro Tutorial will give you a introduction in two parts how to utilize Windows Live Movie Maker to its maximum capability. This will be demonstrated using Windows Live Movie Maker on Windows 7 operating system.
The viewer will learn how to successfully create a multiboot device using the SARDU utility on Windows 7. Start the SARDU utility: Change the image directory to wherever you store your ISOs, this will prevent you from having 2 copies of an ISO wit…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question