Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 7 replies
  • Subscribers 6 subscribers
  • Views 14908 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Configure RDP with DNAT

Clyde Chan

 Hi,

I need some help for the configuration for my RDP. It seems I have configured all the setting as attached but still I'm not able to establish the RDP connection. Please Kindly refer to the attached as for my existing configuration:

Thank you to advise.



This thread was automatically locked due to age.
  • 0

    I had this issue when I installed our UTM, it seems that the UTM did not like the normal rules, so i had to call support to work this one out, hope it helps.

    XG & UTM Architect (Systems: XG v18 & UTM 9.7 - Virtual, HW & SW)
    Curious enough to take it apart, skilled enough to put it back together, Clever enough to hide the extra parts when I'm Done!

  • 0 in reply to Argo

    Hi Jason,

     

    Thank you for your reply and help. But it seems I have also changed the "Source" to External Address and "Destination" to Internal Address still cannot get through.

    And I did created the "Additional Address" within the "Interface" module in order to suite with the print screen that you have provided.

     

    Any ideas?

     

    Thanks.

    Clyde

  • 0 in reply to Clyde Chan

    Hey Clyde.

    It seems correct on the UTM side. I would change "Going to" to the external interface address as per rule #4 in Rulz. Other than that, check your server firewall and gateway to make sure it can actually respond NATed traffic back to the UTM. Use the same link above for tips on how to diagnose the issues you are having.

    Regards,

    Giovani

  • 0

    From outside, what IP are you hitting, CAM EXT IP or your WAN Address.
    Use the logic and everything should work

  • 0 in reply to giomoda

    Hi Giovani,

     

    Thank you for the reply and the explanation provided.

    Yes, you are right. What I did is to change the "Going to " to the external interface address and the source to the intended host IP address then everything is worked now!

     

    Thanks again!

     

    Cheers.

    Clyde

  • 0 in reply to Ol Deda

    Hi Oldeda,

     

    Thank yo for the clarification and it seems it is working now!

     

     

    Cheers.

    Clyde 

  • 0 in reply to Clyde Chan

    Hi Clyde and welcome to the UTM Community!

    Since DNATs on the External Interface only work for traffic coming from outside your LANs, it's clearer to use "Internet IPv4" in the source instead of the "Any IPv4" object.  To understand this better, consider Accessing Internal or DMZ Webserver from Internal Network.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML