Securtiy of forwarding RDP

From: Mike Bailey <mbailey@xxxxxxxxxxxxxxxxxxxx>
Date: Wed, 11 Jan 2006 11:30:28 -0500

In my PIX, I have a rule set up to forward Remote Desktop (port 3389) through to one of my servers:

static (inside,outside) tcp interface 3389 192.168.1.5 3389 netmask 255.255.255.255 0 0

Another rule was created to allow RDP to another server. Since 3389 was already used, we used 3390, which is forward through to 3389 on the other server:

static (inside,outside) tcp interface 3390 192.168.1.6 3389 netmask 255.255.255.255 0 0

My question is - is this safe? And would it be safe to do the same thing to allow RDP directly to my workstation - say forward 3391 to my ip address?

Thanks,
Mike
.

Follow-Ups:
- Re: Securtiy of forwarding RDP
  - From: jeanmarc . soumet
- Re: Securtiy of forwarding RDP
  - From: Volker Birk
- Re: Securtiy of forwarding RDP
  - From: Wayne
- Re: Securtiy of forwarding RDP
  - From: Somebody.

Prev by Date: Re: host availability
Next by Date: Re: host availability
Previous by thread: Outpost Pro vs ZoneAlarm Pro
Next by thread: Re: Securtiy of forwarding RDP
Index(es):
- Date
- Thread

Relevant Pages

Re: Securtiy of forwarding RDP
... MS RDP is not a safe protocol. ... > Another rule was created to allow RDP to another server. ...
(comp.security.firewalls)
Re: Securtiy of forwarding RDP
... I have a rule set up to forward Remote Desktop ... > Another rule was created to allow RDP to another server. ... And would it be safe to do the same thing ... different methods here) would yield me complete control of a workstation ...
(comp.security.firewalls)
Re: Securtiy of forwarding RDP
... > In my PIX, I have a rule set up to forward Remote Desktop ... > Another rule was created to allow RDP to another server. ... And would it be safe to do the same thing ...
(comp.security.firewalls)