Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
137
Views
0
Helpful
1
Replies

Windows service broken behind FW

S891
Level 2
Level 2

‎05-20-2015 11:49 AM - edited ‎03-11-2019 10:58 PM

I have been told by windows Admin that Windows 2012 server service (LDAP, AD..etc) are broken since servers were put behind FW. 

There are at least 4 networks with such services behind firewall. I have allowed IP any any communication between them. There is connectivity on RDP on web ports but as windows Admin is saying he can not do any Windows services beyond any local segment. I don't think there is any port blocking since IP any any is allowed between segments. 

 

Does anyone know what could possible the places o look at?

Labels:
0 Helpful
1 Reply 1

Rishabh Seth
Level 7
Level 7

‎05-20-2015 07:35 PM

Hi Fawad,

For RDP to an internal host from public network require:

1. Static NAT which opens port for communication to internal host on a Public IP.

2.Access-list entry permitting traffic to real IP of the server.

For details refer following link:

http://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/77869-pix-remote-desktop-conn.html

Thanks

Rishabh

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card