I am having a problem getting to my desktop machines using rdp through the firewall. I have a server running w2k that I can reach ok using rdp. I have setup the rules and nats in the firewall ( I am natting one of my outside addresses to my desktop). Is there something that I missed that allows the server to do this but not the desktops? Thanks in advance for any help. Reid ------------------------------------------------------------------------------ All of the data generated in your IT infrastructure is seriously valuable. Why? It contains a definitive record of application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-d2d-c2
Hellows ... You need a DNAT rule in the "rules" file, something like this : DNAT net loc:192.168.1.51 tcp 3389 DNAT = Destination NAT Fábio Rabelo 2011/7/1 Reid Taylor <rtaylor@grayflex.com>> I am having a problem getting to my desktop machines using rdp through the > firewall. I have a server running w2k that I can reach ok using rdp. I > have setup the rules and nats in the firewall ( I am natting one of my > outside addresses to my desktop). Is there something that I missed that > allows the server to do this but not the desktops? Thanks in advance for > any help. > > > Reid > > > > > ------------------------------------------------------------------------------ > All of the data generated in your IT infrastructure is seriously valuable. > Why? It contains a definitive record of application performance, security > threats, fraudulent activity, and more. Splunk takes this data and makes > sense of it. IT sense. And common sense. > http://p.sf.net/sfu/splunk-d2d-c2 > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users >------------------------------------------------------------------------------ All of the data generated in your IT infrastructure is seriously valuable. Why? It contains a definitive record of application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-d2d-c2
On Fri, 2011-07-01 at 16:11 -0300, Fábio Rabelo wrote:> You need a DNAT rule in the "rules" file, something like this : > > DNAT net loc:192.168.1.51 tcp 3389 > > DNAT = Destination NAT> 2011/7/1 Reid Taylor <rtaylor@grayflex.com> > > I am having a problem getting to my desktop machines using rdp > through the > firewall. I have a server running w2k that I can reach ok > using rdp. I > have setup the rules and nats in the firewall ( I am natting > one of my > outside addresses to my desktop). Is there something that I > missed that > allows the server to do this but not the desktops? Thanks in > advance for > any help.Fábio - please don''t top-post. Reid - when you attempt to connect to rdp, do the packet and byte counts for the relevant net->loc ACCEPT rule increment? Do you see any firewall DROP or REJECT messages in the log when you try to connect? Is the firewall on your desktop allowing incoming RDP connections from remote networks? -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ All of the data generated in your IT infrastructure is seriously valuable. Why? It contains a definitive record of application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-d2d-c2