Link to home
Start Free TrialLog in
Avatar of Chris Burnett
Chris Burnett

asked on

I cannot connect to Remote Desktop Services in Server 2008 r2 via the internet but no problem connecting locally.

I have set up Server 2008 r2 to be a remote session host for rds. I purchased a ssl certificate and linked it to RDS and bound it to the default web site in iis 7. I created an A record for the RDS address using the wan ip address.  I opened port 3389 on the modem since that's the port rds is set to use. I still cannot connect. Any Suggestions?
Avatar of arnold
arnold
Flag of United States of America image
are you certain that your modem is the only thing between the RDS server and the Internet and there is no other firewall device? You opened port 3389 did you direct it to port 3389 and to the LAN ip of the RDS server?

Ping the default gateway from your RDS server, get the MAC address arp -a ip_of_default_gateway and compared it to the device manufacturer based in MAC address, then make sure it matches the modem on which you made the change.

An easier way is to look at the modem to see what LAN IPs it has versus what the ip on the system is.

The confusing part of your comment, you mentioned you placed the cert in/on iis.
Avatar of Chris Burnett
Chris Burnett

ASKER

I pinged the default gateway and I was able to reach it. The Mac address is the right one for the modem as well. What I meant when I said I put the cert in IIS was I binded the certificate to the default web site in IIS.  That is necessary because RDS uses IIS to function. Correct me if I am wrong on that.
Avatar of Chris Burnett
Chris Burnett

ASKER

I think the problem may be a DNS issue. It seems like my RDS information is not populating DNs servers on the web. I created an A-Record for my Rds site but still nothing.
Avatar of arnold
arnold
Flag of United States of America image
I think RDP uses its own certficate.

Here is a link, there is a powershell command to run to see whether your RDP service reflects the SSL certificate.

I do not believe IIS is the correct location to load the cert.
Avatar of Chris Burnett
Chris Burnett

ASKER

I did associate the certificate with RDS. I can check the RdS management console and see that it  is using the right certificate. I really don't think that my Dns is propagating with servers on the wan. What can I do to make that happen. Is there a certain host record that should be in place?
Avatar of arnold
arnold
Flag of United States of America image
The change addition of the host has to be done on the revord that is public.  There is no way without you disclosing the name of your domain.  You can use betterwhois.com enter your domain and it will reflect the registration revord at the bottom of which you will see the name servers and presumably that will indicate to you who the registrar is and where you need to go to add the host.


Can you externally connect to RDS using the wan IP bypassing the need for other modifications.
This question needs an answer!
Become an EE member today
7 DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.