Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Restrict Clinet IP address on Terminal Service

from [Thor] Network Security [Permanent Link]
Subject: Re: Restrict Clinet IP address on Terminal Service
Date: Tue, 21 Sep 2004 14:02:31 -0700
Ah, the old "tiny, thin, and robust" solution. Doubt you'll find that. But, all the suggestions given will work, and should not have any noticeable affect on network performance if implemented properly. They will have some affect, but my guess is that it will be much less than the current traffic being created by having unrestricted RDP availability.

T

----- Original Message ----- From: "Toto A Atmojo" <toto@playon.co.id>
To: <focus-ms@securityfocus.com>
Sent: Monday, September 20, 2004 2:59 AM
Subject: RE: Restrict Clinet IP address on Terminal Service


Thanks for all the comment.
FYI, my server is a really bussy server wirth network traffic. So I'm afraid
that if I implement the firewall or IPSEC maybe, these will filter all the
incoming traffic (Yes that's the firewall job right). So it will decrease
network performance on my machine.

All I want to do is just put the 'guard' on RDP port 3389 for inspecting
traffic only want to connect to that particular port.
This guard will kill if the traffic is not from the 'allow' source.

Is it possible?
Or is there any tiny, thin and robust third party firewall product for this
purpose?

Any suggestion would be appreciate.

Thanks

-----Original Message-----
From: Depp, Dennis M. [mailto:deppdm@ornl.gov]
Sent: Friday, September 17, 2004 9:32 PM
To: Toto A Atmojo; focus-ms@securityfocus.com
Subject: RE: Restrict Clinet IP address on Terminal Service

You can use IPSEC to limit the access to this machine of the RDP port (3389)

Dennis

-----Original Message-----
From: Toto A Atmojo [mailto:toto@playon.co.id]
Sent: Thursday, September 16, 2004 2:41 AM
To: focus-ms@securityfocus.com
Subject: Restrict Clinet IP address on Terminal Service

Hello all,
I have a question on restricting client connection to access terminal
service (Remote Desktop) on Windows 2003.
Can we just allowing only 1 IP (or some IPs) to connect to
our server that
provide Remote Desktop?
Is there any Original setting on Windows to do that (Without
configuring on
third party firewall / tools)?

Thanks



--------------------------------------------------------------
-------------
--------------------------------------------------------------
-------------



---------------------------------------------------------------------------
---------------------------------------------------------------------------



---------------------------------------------------------------------------
---------------------------------------------------------------------------




---------------------------------------------------------------------------
---------------------------------------------------------------------------

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Application sniffer, Danux
Next by Date:  Re: How to Enforce Complex Password Policy for Selected Users Only, Thor
Previous by Thread:  RE: Restrict Clinet IP address on Terminal Service, Toto A Atmojo
Next by Thread:  Re: Restrict Clinet IP address on Terminal Service, Miroslaw Slawek Chorazy
Indexes:  [Date] [Thread] [Top] [All Lists]