OPNsense Forum
Archive => 17.1 Legacy Series => Topic started by: BlackDragon381 on February 12, 2017, 12:20:48 am
-
I try to forward RDP, but can't connect. In previous build (16.7) have the same problem.
OPNsense host is Proxmox with e1000 ethernet card.
-
I try to forward RDP, but can't connect. In previous build (16.7) have the same problem.
would be much helpful if you shows your firewall rules , and provide more informatie about your network
-
would be much helpful if you shows your firewall rules , and provide more informatie about your network
I added screenshots. What information about my network do you need?
The same configuration on pfSense work fine, as I remeber.
-
Try setting the Destination to "WAN Address"
-
I see you have two RDP rules on the WAN side, probably that conflict.
RDP protocol is TCP and not UDP.
-
Reconfigure settings.
Nothing changes, don't work.
PS. OPNsense host is Proxmox with e1000 ethernet card.
May be I need to change virtual ethernet card?
-
I see you have two RDP rules on the WAN side, probably that conflict.
RDP protocol is TCP and not UDP.
Now I have only one TCP rule, it's not working.
-
Make sure you are on 17.1.1 first, then run this command in shell / console as root:
sysctl net.pf.share_forward=0
-
Make sure you are on 17.1.1 first, then run this command in shell / console as root:
sysctl net.pf.share_forward=0
Yes, I on 17.1.1.
I do this command, but nothing changed. For what this command?
After reboot value back to 1.
-
Make sure you are on 17.1.1 first, then run this command in shell / console as root:
sysctl net.pf.share_forward=0
Yes, I on 17.1.1.
I do this command, but nothing changed. For what this command?
After reboot value back to 1.
are you trying to RDP over the internet ? don't see a firewall hit on the logs ?
-
are you trying to RDP over the internet ? don't see a firewall hit on the logs ?
Yes, over Internet.
I can't find information about this connection in firewall logs :(
-
Looking at the port forward rules screenshot a bit closer, the problem is that you have the destination address set to "LAN Address" when it must be set to "WAN address"
-
Looking at the port forward rules screenshot a bit closer, the problem is that you have the destination address set to "LAN Address" when it must be set to "WAN address"
Thank you, now it's work, sometimes, but sometimes not, it's very strange (may be is android MS RDP client is buggy). But it's better then was!
I use sysctl net.pf.share_forward=1
And I can't connect through LAN.
-
Port forwarding work fine only first a few minutes after rebooting forwarding rules.
After that there is no ways to connect.
-
It is very strange.
The phone can connect via RDP always, but it does not work from another computer.
In the rules, the source is set as "*"!
What could be the problem?
-
Well i've compared your port forward with my port forward. The only difference I can see is in your NAT rule. Mine looks like this: WAN -> TCP -> * -> * -> * -> 3389 -> PC -> 3389 -> RDP Description
Is the phone and the computer on the same remote network?
Make sure the offsite computer doesn't have a software firewall blocking outbound TCP 3389. Sounds more like a remote computer problem then an OPNSense firewall problem if a remote cellphone app connects through the OPNSense router and not the remote computer.
Things to try: From the Remote computer can you remote telnet to port 3389. E.g telnet <public-ip> 3389
Does it show as the port being open? If it is open it will show a flashing cursor and a blank screen. If it fails it will return: Could not open connection to the host, on port 3389.
From the remote computer in question, are you able to use RDP to another computer on the local network to another PC without any routing?