I have the following network topology:
PC1 <=> Switches L2 <=> Switch L2/L3 <=> PIX <=> Router <=> INTERNET <=> Adsl Modem/Router <=> PC2
I want from the PC2 to make RDP connection to PC1.
The PC1 has a private static IP Address (10.10.10.10).
Teamviewer is not a option for my implementation.
According to a cisco document i found the below proposed solution:
1) Configure an access-list on the PIX
access-list Outside_access_In permit tcp any host 126.96.36.199 eq 3389
2) Apply the access-list
access-group Outside_access_In in interface outside
3) Configure the static NAT
static (inside,outside) 188.8.131.52 10.10.10.10 netmask 255.255.255.255
Does this configuration recommend as i have (with any) all the Internet space to allow access to RDP service.
If in the future it exists the necessity to add an additional private IP address for access via RDP, how it will possible to change my above configuration as i don't want to wast all my public IP Addresses.