cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
728
Views
0
Helpful
1
Replies

Allowing RDP to pass through ZBF

Ronald Nutter
Level 1
Level 1

I am setting up ZBF for a remote office that has a single server that needs to be reachable via the Internet.  So that I can get into the server remotely since it is on a standalone connection from our MPLS network, I have entered the following lines into the router config -

ip access-list extended ACL_RDP

permit tcp any host x.x.x.x eq 3389

class-map type inspect match-all RDP

match access-group name ACL_RDP

policy-map type inspect ccp-policy-ccp-cls--1

  class type inspect RDP

    inspect

When I type the class type line, I get an error %No specific protocol defined in class RDP for inspections all protocols will be inspected.

Is there a better way to do the allowing of RDP through the firewall ?

Is the error I listed anything to worry about ?

Ron

1 Reply 1

Hello,

That messasge is not a problem. But you can specify in your class map a protocol and a port. You could match protocol TCP and port 3389 instead of using the ACL. That way the message log will not appear. But  your current config must be working fine

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: