Blocking Remote Desktop with ISA
Results 1 to 5 of 5

Thread: Blocking Remote Desktop with ISA

  1. #1
    Junior Member
    Join Date
    Jan 2004
    Posts
    4

    Question Blocking Remote Desktop with ISA

    Hello, I am taking a Network services and security class. We are trying to get ISA to block incoming WAN RDC's while allowing local RDC's. We've tried creating different protocol rules. Our WAN address set is 192.168.213.#/24, these are the ones that are to be blocked. Our LAN set is 192.168.14.#, which are to be allowed.
    Thanks,
    elsberrye

  2. #2
    AO French Antique News Whore
    Join Date
    Aug 2001
    Posts
    2,126
    Are you pc move to SP2? You could created a rules in your active directory that allow RDC only your local subnet.
    -Simon \"SDK\"

  3. #3
    Senior Member
    Join Date
    Mar 2004
    Location
    Colorado
    Posts
    421
    You didnt say what you tried to block specifically.
    Why not just block port 3389 on the external/WAN interface coming in?

  4. #4
    Junior Member
    Join Date
    Jan 2004
    Posts
    4
    Sorry about the lack of info.
    My server is running win2k w/service pack 4 on it and my laptop is running winxp pro sp1. I have we blocked port 3389 both incoming and outgoing, neither of them seems to work. We have not as of yet installed AD on to our machines, we are to work things out without it. We don't deal with AD at any point during this semester. I set up a policy with ISA to block all incoming requests from ip addresses 192.168.213.1 to 192.168.213.254, 192.168.213.14 being the exception to the rule. That should have blocked off all outside RDC requests. My nieghbor could still access my server with RDC, by using his laptop connected to his server.
    thanks

  5. #5
    AO French Antique News Whore
    Join Date
    Aug 2001
    Posts
    2,126
    Install SP2 and run this attachement reg file. I'll configure the firewall on all machine. (You'll need to install SP2 someday and it's pretty good)

    Created a batch file like this one

    regedit /S "X:FullFirewallStandard.reg"
    "x:\Sp2\i386\Update\Update.exe" /passive /forcerestart /f

    Where X is the location where you extract SP2.

    To extract SP2, Check my tutorial : How to integrate and deploy Service Pack 2 for Windows XP
    -Simon \"SDK\"

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •