How do I allow remote desktop connection through Firewall?

Table of contents

• Allow RDP port through Windows Firewall
• Allow RDP port through Router [using NAT Translation]
• Change the default port of RDP
• Check if port 3389 is open and listening

Allow RDP port through Windows Firewall

1. Go to Windows Settings [Windows key + i]
2. Go to Update & Security –> Windows Security and click on Firewall & network protection from the right-hand listing. This will open a new window.
   Windows Firewall and network protection
3. Click the link Allow an app through firewall
   
   Allow an app through Firewall
4. Click on Change settings
   
   Firewall change settings
5. Search for Remote Desktop from the list. It should be there by default. If it is not there, you should click on Allow another app button and navigate to the following:
   C:\Windows\System32\mstsc.exe
   Allow Remote Desktop through firewall private or public
6. If you want to allow Remote Desktop on the local network only, check the checkbox labeled Private. If you want it publicly available, you should check the Public checkbox too.
7. Press OK for the changes to take effect.

configure windows firewall to allow RDP and Shared folder access through the VPN

Hello.
I have configure Windows Server 2019 Essentials for VPN connections.
I'm able to connect to the server using the VPN, but I'm unable to make an RDP connection or to access the shared folder, unless I disable the Windows firewall public profile.
I can't point which rule is blocking the access, or which one to enable or create to allow it, or is there a way to get a live monitoring that would tell me whhy the inbound connection has been denied.
Thank you

Comment

Comment Show 0

Comment

5 |1600 characters needed characters left characters exceeded

▼

• Visible to all users
• Visible to the original poster & Microsoft
• Viewable by moderators
• Viewable by moderators and the original poster
• Advanced visibility

Attachments: Up to 10 attachments [including images] can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick answered • May 10, '21 | DSPatrick commented • May 12, '21

Well actually not "my" way but the "microsoft windows" way to define firewall rules. You might try some firewall logging in case some custom ports have been set.

--please don't forget to Accept as answer if the reply is helpful--

image.png [54.6 KiB]

Comment

Comment · Show 16

Comment

5 |1600 characters needed characters left characters exceeded

▼

• Visible to all users
• Visible to the original poster & Microsoft
• Viewable by moderators
• Viewable by moderators and the original poster
• Advanced visibility

Attachments: Up to 10 attachments [including images] can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

AlainBensimon-7109 · May 10, 2021 at 11:48 PM

So below is the log of the firewall. You can see when it's dropped [firewall is on "blocked [default] and allow when firewall is on "allow"
I was connecting to the shared folder

0 Votes 0 ·

image.png [65.7 KiB]

DSPatrick AlainBensimon-7109 · May 11, 2021 at 12:00 AM

Looks like TCP 445 is still blocked.

--please don't forget to Accept as answer if the reply is helpful--

0 Votes 0 ·

AlainBensimon-7109 DSPatrick · May 11, 2021 at 12:36 AM

I just created a rule for 445 as well, but still no success.

0 Votes 0 ·

DSPatrick answered • May 9, '21 | AlainBensimon-7109 edited • May 9, '21

File sharing == TCP ports 445,139 and UDP ports 137, 138
RDP == port 3389

--please don't forget to Accept as answer if the reply is helpful--

Comment

Comment · Show 1

Comment

5 |1600 characters needed characters left characters exceeded

▼

• Visible to all users
• Visible to the original poster & Microsoft
• Viewable by moderators
• Viewable by moderators and the original poster
• Advanced visibility

Attachments: Up to 10 attachments [including images] can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

AlainBensimon-7109 · May 09, 2021 at 10:35 PM

Yes I know that, and all those native rules are enabled, but it's not working.

The only way to make it work is to set the inbound connections to allow, but I assumed that if I put it on "block [default]", t will block all connections except the ones that the rules allowed.

0 Votes 0 ·

image.png [38.5 KiB]

image.png [60.6 KiB]

image.png [20.8 KiB]

DSPatrick answered • May 9, '21 | AlainBensimon-7109 commented • May 9, '21

That isn't quite right

Start > Run and type firewall. ...
Click on the Advanced Settings in the left pane. ...
Click on the Inbound Rules
In left pane, click on New rule.
Under Rule Type select option Port and click next.
Select TCP and or UDP specific local ports options.
Allow the connection
Select the profile in use
Give the rule some meaningful name

--please don't forget to Accept as answer if the reply is helpful--

Comment

Comment · Show 1

Comment

5 |1600 characters needed characters left characters exceeded

▼

• Visible to all users
• Visible to the original poster & Microsoft
• Viewable by moderators
• Viewable by moderators and the original poster
• Advanced visibility

Attachments: Up to 10 attachments [including images] can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

AlainBensimon-7109 · May 09, 2021 at 11:59 PM

I tried your way, even though I was skeptical since the Microsoft native rules are exactly the same, but it didn't work either.

0 Votes 0 ·

CandyLuo-MSFT answered • May 10, '21 | AlainBensimon-7109 commented • May 10, '21

Hi ,

Try to add the subnet of your VPN clients in Remote IP address section for File and Printer Sharing rules and then see if you can access shared folder. As picture below:

Best Regards,
Candy

If the Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

image.png [51.2 KiB]

Comment

Comment · Show 1

Comment

5 |1600 characters needed characters left characters exceeded

▼

• Visible to all users
• Visible to the original poster & Microsoft
• Viewable by moderators
• Viewable by moderators and the original poster
• Advanced visibility

Attachments: Up to 10 attachments [including images] can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

AlainBensimon-7109 · May 10, 2021 at 11:51 PM

Hello.
I have tried this, and it didn't help.

0 Votes 0 ·

DSPatrick answered • May 10, '21 | AlainBensimon-7109 commented • May 10, '21

Just checking if there's any progress or updates?

--please don't forget to Accept as answer if the reply is helpful--

Comment

Comment · Show 1

Comment

5 |1600 characters needed characters left characters exceeded

▼

• Visible to all users
• Visible to the original poster & Microsoft
• Viewable by moderators
• Viewable by moderators and the original poster
• Advanced visibility

Attachments: Up to 10 attachments [including images] can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

AlainBensimon-7109 · May 10, 2021 at 11:59 PM

I've answered you up there.

0 Votes 0 ·

How to Enable Remote Desktop Connection in Windows 10

The Remote desktop feature in Microsoft windows 10 allows user to access their Windows 10 PC from a remote Computer using a remote desktop client. Once you enable the remote desktop, you can access your windows 10 computer from anywhere from any device.

By default, remote desktop connection is disabled and blocked by the windows firewall in windows 10. In this tutorial we are going to learn how to enable remote desktop connection in Windows 10 Operating System.

1. Open System Settings - Right click on the Windows start button and select System from the menu.
2. Open Remote Desktop Settings - Click on the Remote desktop link on the left to open remote Settings window.
3. Allow Remote Connections - Under the remote desktop section, Turn "Enable Remote Desktop" on, and then choose Confirm.

MetaLAN

• Up and running in 5 minutes
• Agent less - No need to install anything on the endpoints
• Free download - No registration required

Learn More...

1. Cách bật Firewall trên windows

Bước 1: Mở chương trình quản lý tưởng lửa

– Cách 1: Vào Start-> Run->Gõ Firewall.cpl và nhấn OK

– Cách 2: Mở công cụ tìm kiếm của window [Nhấn cửa sổ+ S] => Tìm Firewall => Click vào kết quả tìm kiếm “Windows Firewall“

Bước 2. Click chọn “Turn Windows Firewall on or off” ở menu bên trái

Click chọn “Turn Windows Firewall on or off” ở menu bên trái

Bước 3: Click chọn Turn on windows Firewall cho cả Private netword settings và Public network settings sau đó nhấn OK

Tường lửa đã được bật xanh như hình dưới