Announcement

Collapse
No announcement yet.

RDP over SSL ?

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • RDP over SSL ?

    I have set up an SBS 2003 R2 SP2 system in my own office.
    I have run all the needed wizzards.
    I have bought a nice SSL certificate.
    All is working well.

    Let's assume I only have ports 25 and 443 open and they are redirected to my SBS server.

    Is it possible to "tunnel" RDP traffic through SSL using port 443 so I can use RDP to connect to my server from the internet ?

    I know RDP is already encrypted, but that's not why I ask this.
    At 2 of my clients port 3389 is blocked (in and out) and I would like to connect through 443, which is open.

  • #2
    Re: RDP over SSL ?

    You can change the port RDP is listening on, see http://support.microsoft.com/kb/306759 and you can change the port the client uses for RDP (which obviously must also change) by adding colon ( port number at the end of the IP address that you are running mstsc on.

    However, if the server is already listening on 443 for other things, such as OWA, you will have troubles with two services listening on the same port, so I think you should open up a new, different port on your customer's router to handle RDP traffic.

    Altrernatively, are you able to join their VPN and then RDP to a local IP address? This may be a better option and sidesteps the issue.

    I realise the above is not the perfect answer, but I hope it helps somewhat.
    Best wishes,
    PaulH.
    MCP:Server 2003; MCITP:Server 2008; MCTS: SBS2008

    Comment


    • #3
      Re: RDP over SSL ?

      Originally posted by PaulH View Post
      You can change the port RDP is listening on, see http://support.microsoft.com/kb/306759 and you can change the port the client uses for RDP (which obviously must also change) by adding colon ( port number at the end of the IP address that you are running mstsc on.

      However, if the server is already listening on 443 for other things, such as OWA, you will have troubles with two services listening on the same port, so I think you should open up a new, different port on your customer's router to handle RDP traffic.

      Altrernatively, are you able to join their VPN and then RDP to a local IP address? This may be a better option and sidesteps the issue.

      I realise the above is not the perfect answer, but I hope it helps somewhat.
      Thanks, but this won't help.

      They do protocol filtering as well, so even if I change the port, that won't change a bit.
      VPN's are not going through the proxy, bummer.
      If there would be a way to let it go through SSL, they would not see the RDP protocol.

      Thanks anyway.

      Comment


      • #4
        Re: RDP over SSL ?

        Use RWW! It is based on 443 and can be set up for you OUT OF THE BOX if you UTFW!
        See http://www.sbsfaq.com/Lists/FAQs/DispForm.aspx?ID=11 for more details.
        TIA

        Steven Teiger [SBS-MVP(2003-2009)]
        http://www.wintra.co.il/
        sigpic
        Iím honoured to have been selected for the SMB 150 list for 2013. This is the third time in succession (no logo available for 2011) that I have been honoured with this award.

        We donít stop playing because we grow old, we grow old because we stop playing.

        Comment


        • #5
          Re: RDP over SSL ?

          Originally posted by teiger View Post
          Use RWW! It is based on 443 and can be set up for you OUT OF THE BOX if you UTFW!
          See http://www.sbsfaq.com/Lists/FAQs/DispForm.aspx?ID=11 for more details.
          what about port 4125? do you not need that open for it to work?
          "...if I turn out to be particularly clear, you've probably misunderstood what I've saidĒ - Alan Greenspan

          Comment


          • #6
            Re: RDP over SSL ?

            Originally posted by teiger View Post
            Use RWW! It is based on 443 and can be set up for you OUT OF THE BOX if you UTFW!
            See http://www.sbsfaq.com/Lists/FAQs/DispForm.aspx?ID=11 for more details.
            Yes that works perfectly, but works over port 4125.
            Would that not be blocked by most proxies ?
            And what protocol travels over port 4125 ?

            Comment


            • #7
              Re: RDP over SSL ?

              Yes the remote firewall needs 4125 open (next to the SBS) but nothing else uses that port and it is only opened dynamically if you read the link.
              TIA

              Steven Teiger [SBS-MVP(2003-2009)]
              http://www.wintra.co.il/
              sigpic
              Iím honoured to have been selected for the SMB 150 list for 2013. This is the third time in succession (no logo available for 2011) that I have been honoured with this award.

              We donít stop playing because we grow old, we grow old because we stop playing.

              Comment


              • #8
                Re: RDP over SSL ?

                Originally posted by teiger View Post
                Yes the remote firewall needs 4125 open (next to the SBS) but nothing else uses that port and it is only opened dynamically if you read the link.
                I assume that there will be traffic from my PC that is supposed to go through the proxy to my SBS server over port 4125.
                Am I wrong ?
                Why else do I have to open that port ?

                Comment


                • #9
                  Re: RDP over SSL ?

                  Originally posted by teiger View Post
                  Use RWW! It is based on 443 and can be set up for you OUT OF THE BOX if you UTFW!
                  See http://www.sbsfaq.com/Lists/FAQs/DispForm.aspx?ID=11 for more details.
                  It works from almost everywhere, but not from where I am today.
                  SSL works, I can log on to RWW, but when I try to connect to a PC, IE says it can't find it.
                  Bummer.

                  Comment

                  Working...
                  X