Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

RDP with Server 2008 from outside network

Posted on 2015-02-16
12
Medium Priority
?
70 Views
Last Modified: 2016-03-04
I have a requirement for users to access a Server 2008 from outside my network. The server is licensed for RDP and my users can access the server from computers within the network with no problem, but when trying to access the server from outside the network the server will not allow the connection.

It is not a firewall issue as the local firewall is turned off and I can RDP to a Server 2003 from outside the network and I can RDP from the Server 2003 to the Server 2008 if I accessed the Server 2003 from  within the network, If I try to RDP directly to the Server 2008 from outside the network, or to the Server 2003 from outside the network I cannot then RDP to the Server 2008.

I feel like it must be a security policy issue, but I have no idea how to get around it.
0
Comment
Question by:DonkeyAnn
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
  • 2
12 Comments
 
LVL 23

Expert Comment

by:yo_bee
ID: 40612494
You will need to know your Public IP to access this first off.
If you only have a single Public IP you will need to change the default port on one of the Server for RDP.
by default RDP uses 3389. So if you want to access your 2008 Server via RDP you will need to configure your router NAT for port 3389.
What this means is when you make a call to <public IP> xx.xxx.xxx.xx using MSTSC (RDP) the call hits the router and needs to know where to redirect the traffic.

NAT <Public:3899> to <Private:3389>
If you have multiple Public addresses you can setup multiple NAT for both the 2003 and 2008 server

Do you have multiple public addresses and do you know the routers current settings for the 2003 Server?


Your description seems that you are able to access 2003 server, but later in the description it stated that you are not able to access either from the outside.
0
 
LVL 37

Expert Comment

by:Mahesh
ID: 40612617
I guess you are accessing both servers on single IP

Ur router \ firewall is unable to send traffic then to 2008 server

AS stated above you need to configure one more rule for 2008 RDP with custom RDP port
OR
If both IPs are different ensure that TCP 3389 is opened from new IP to 2008 server

OR

Best option could be setup RD Gateway server in DMZ which can allow you to connect to multiple internal servers via single RD Gateway server
0
 

Author Comment

by:DonkeyAnn
ID: 40612650
No, each server has a separate IP address and I know them both.  I can access the 2003 from outside the network, but when I do, I can't RDP over to the 2008 server.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 23

Expert Comment

by:yo_bee
ID: 40612685
So you are getting into the 2003 server from the outside via RDP, but unable to access 2008 Server while on the 2003 server, but while internally connecting to the 2003 server you can RDP to the 2008 server.

Have you setup similar rules on the router for your 2008 server as there is for the 2003 server to allow for the connection from the outside?
0
 

Author Comment

by:DonkeyAnn
ID: 40612692
Yep, they are both mapped similarly and have equal access rules.
0
 
LVL 23

Expert Comment

by:yo_bee
ID: 40612799
As you stated you are able to access the 2008 Server directly while internal to the network?
0
 

Author Comment

by:DonkeyAnn
ID: 40613451
Yes, using RDP.
0
 
LVL 37

Expert Comment

by:Mahesh
ID: 40613646
Ok
are you able to telnet 2008 server IP on TCP 3389 from internet client machine?

If this test get failed you need to look on firewall 1st
0
 

Author Comment

by:DonkeyAnn
ID: 40615162
Yes, 3389 is the default port and works from inside the network. The firewall on the 2008 server is disabled while trying to resolve this problem. I am also telnetting to the 2003 server from outside and inside the network on 3389.
0
 

Accepted Solution

by:
DonkeyAnn earned 0 total points
ID: 40615800
Thanks everyone for the help; as usual it was the dumbest of things.  Another tech plugged the patch cable into the wrong port.
0

Featured Post

Simple, centralized multimedia control

Watch and learn to see how ATEN provided an easy and effective way for three jointly-owned pubs to control the 60 televisions located across their three venues utilizing the ATEN Control System, Modular Matrix Switch and HDBaseT extenders.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A common practice in small networks is making file sharing easy which works extremely well when intra-network security is not an issue. In essence, everyone, that is "Everyone", is given access to all of the shared files - often the entire C: drive …
Are you one of those front-line IT Service Desk staff fielding calls, replying to emails, all-the-while working to resolve end-user technological nightmares? I am! That's why I have put together this brief overview of tools and techniques I use in o…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …
In this video, Percona Solutions Engineer Barrett Chambers discusses some of the basic syntax differences between MySQL and MongoDB. To learn more check out our webinar on MongoDB administration for MySQL DBA: https://www.percona.com/resources/we…

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question