Windows Server Firewall Configuration
Windows Server 2008 Firewall
I'd like to restrict Remote Desktop access to the server to just one external IP, and one LAN IP.
Have created an inbound rule for the RD port.
If I enter the external IP in the rule scope options and leave local IP as any, then only the external IP connects but no local IPs
can connect. If I enter the local IP specifically then it blocks access from the external IP even though its specifiied.
It appears I can do one or the other only in the rule.
How do I configure the firewall to allow RD access from one specific internal IP and one specific external IP only ?
Thank you
I'd like to restrict Remote Desktop access to the server to just one external IP, and one LAN IP.
Have created an inbound rule for the RD port.
If I enter the external IP in the rule scope options and leave local IP as any, then only the external IP connects but no local IPs
can connect. If I enter the local IP specifically then it blocks access from the external IP even though its specifiied.
It appears I can do one or the other only in the rule.
How do I configure the firewall to allow RD access from one specific internal IP and one specific external IP only ?
Thank you
Andrew Leniart
I don't think it's possible to do both with Windows Firewall matmos, but please do wait for other expert opinions as I don't have a Windows 2008 server available to me at the moment to check on. Have you looked at your Router's configuration to see if that could help though? Ie: Set it to only allow access to the port you're using for RDP to one IP and reject all others? Could be a workaround you could use in the meantime?
I concur with Andrew. You should be managing this on your edge firewall and router, not directly in the server itself. The attack surface is simply too high to do otherwise.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.