Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

RDP ACL Issue

Hey everybody! Currently i've run into an issue. I have RDP set up for a client and it works when we hit the WAN ip address on port 3389. However, it works for everybody, and not just for our network (were an ISP with a /23 network that we work from in the office). I want only our network to be able to remote into the server we have set up at the client site.

This is the ACL i've put in place on the WAN interface using "ip access-group 100 in" however it doesnt work, and i really dont know why. It should allow us in, then block everyone else. Any ideas why its not working? When i apply it, nobody can remote into that server.

access-list 100 permit tcp X.X.X.X 0.0.1.255 host 192.168.1.4 eq 3389

access-list 100 deny tcp any any eq 3389

access-list 100 permit ip any any

1 ACCEPTED SOLUTION

Accepted Solutions

RDP ACL Issue

What is the subnet configured on WAN?

What is the RDP server address used for connection?

A private ip or pubblic ip?

Try to change the 192.168.1.4 with the pubblic ip.

Regards.

2 REPLIES

RDP ACL Issue

What is the subnet configured on WAN?

What is the RDP server address used for connection?

A private ip or pubblic ip?

Try to change the 192.168.1.4 with the pubblic ip.

Regards.

New Member

RDP ACL Issue

That was it! I put my public IP on the ACL and it worked. I knew it was going to be something easy, and now that you've said that i realize why it is the public ip. Novice mistake ha. Thank you!

198
Views
0
Helpful
2
Replies