Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLAN (ethernet/Wifi/routers/Bluetooth)Unable to RDP to a PC over the internet
Linkzor

45 posts

Geek


#242489 30-Oct-2018 19:48
Send private message

I am trying to RDP to my PC over the internet however the connection is timing out because of no response from the remote device.

 

*gasp* Yes, I'm aware this is pretty stupid but this is only a short term thing, in the long term I'll get a VPN set up but I'm happy to accept the risks for now.

 

The router (Asus RT-AC58U) connects directly to the ONT while the PC I am trying to RDP to connected to one of the LAN ports on the router.

 

I have a Gigabit UFB connection with Skinny. To the best of my knowledge Skinny are no longer using CG NAT as the WAN IP of my router is the same IP I get when I enter what's my IP on Google from my PC.

 

I have configured Port Forwading/Destination PAT (WAN address:5555 --> 192.168.1.30:3389) as per below 

 

Click to see full size

 

I tested on various port forward checking websites and it's showing the connection as closed/filtered.

 

 

 

Troubleshooting done so far :

 

- When an RDP connection is made from an external device on the internet, in this case from a 2degrees 4G connection, from the connection logs I can see on the Asus router, it appears to be allowing the inbound TCP connection as per below

 

Oct 30 18:37:29 kernel: ACCEPT IN=ppp0 OUT=br0 MAC= SRC=118.148.x.x DST=192.168.1.30 LEN=64 TOS=0x00 PREC=0x00 TTL=248 ID=48485 DF PROTO=TCP SPT=11138 DPT=3389 SEQ=728927993 ACK=0 WINDOW=4380 RES=0x00 SYN URGP=0 OPT (020405AC010303030101080AC3B100AB0000000004020000)
Oct 30 18:37:32 kernel: ACCEPT IN=ppp0 OUT=br0 MAC= SRC=118.148.x.x DST=192.168.1.30 LEN=64 TOS=0x00 PREC=0x00 TTL=248 ID=2910 DF PROTO=TCP SPT=11138 DPT=3389 SEQ=728927993 ACK=0 WINDOW=4380 RES=0x00 SYN URGP=0 OPT (020405AC010303030101080AC3B10C630000000004020000)
Oct 30 18:37:35 kernel: ACCEPT IN=ppp0 OUT=br0 MAC= SRC=118.148.x.x DST=192.168.1.30 LEN=64 TOS=0x00 PREC=0x00 TTL=248 ID=41649 DF PROTO=TCP SPT=11138 DPT=3389 SEQ=728927993 ACK=0 WINDOW=4380 RES=0x00 SYN URGP=0 OPT (020405AC010303030101080AC3B1181B0000000004020000)
Oct 30 18:37:38 kernel: ACCEPT IN=ppp0 OUT=br0 MAC= SRC=118.148.x.x DST=192.168.1.30 LEN=48 TOS=0x00 PREC=0x00 TTL=248 ID=50754 DF PROTO=TCP SPT=11138 DPT=3389 SEQ=728927993 ACK=0 WINDOW=4380 RES=0x00 SYN URGP=0 OPT (020405AC04020000)

 

 

 

- Turned off Windows Firewall/Defender

 

- Tried using other external ports - 3389, 5150, 7777, etc

 

- Confirmed inbound RDP is enabled on the PC

 

Click to see full size

 

- Confirmed port TCP 3389 on the PC is listening

 

Click to see full size

 


- Ran a Wireshark capture on the PC when making a connection attempt; I do not see any inbound RDP traffic at all

 

 

 

From what I gather the inbound traffic is getting past the firewall but for some reason never arrives at the destination. I'd appreciate any advice to troubleshoot this further.

Create new topic
SATTV
1648 posts

Uber Geek

ID Verified

  #2117101 30-Oct-2018 20:39
Send private message

Make sure RDP is allowed through the windows firewall.

 

Does RDP work when you are in the same lan?

 

John




I know enough to be dangerous



Yogi02
238 posts

Master Geek


  #2117102 30-Oct-2018 20:40
Send private message

I have found that sometimes when there is an intermittent problem, just re-entering the saved password will make it work.

 

Is it possible the IP address has changed?

 

Good Luck

davidcole
6038 posts

Uber Geek

Trusted

  #2117104 30-Oct-2018 20:42
Send private message

Is that saying source port 11138?




Previously known as psycik

Home Assistant: Gigabyte AMD A8 Brix, Home Assistant with Aeotech ZWave Controller, Raspberry PI, Wemos D1 Mini, Zwave, Shelly Humidity and Temperature sensors
Media:Chromecast v2, ATV4 4k, ATV4, HDHomeRun Dual
Server Host Plex Server 3x3TB, 4x4TB using MergerFS, Samsung 850 evo 512 GB SSD, Proxmox Server with 1xW10, 2xUbuntu 22.04 LTS, Backblaze Backups, usenetprime.com fastmail.com Sharesies Trakt.TV Sharesight 



michaelmurfy
meow
13266 posts

Uber Geek

Moderator
ID Verified
Trusted
Lifetime subscriber

  #2117120 30-Oct-2018 21:18
Send private message

Instead of doing that and opening yourself up (even if it is just for a short time) give Anydesk a go: https://anydesk.com/remote-desktop

 

Tree, tiny, works fast and is secure. Doesn't require you to open any ports etc and works through the harshest of firewalls.

 

I have it running as a service on my parents laptop and have a 100% success rate with logging in.




Michael Murphy | https://murfy.nz
Referral Links: Quic Broadband (use R122101E7CV7Q for free setup)

Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.

Linkzor

45 posts

Geek


  #2117131 30-Oct-2018 21:53
Send private message

SATTV:

 

Make sure RDP is allowed through the windows firewall.

 

Does RDP work when you are in the same lan?

 

John

 

 

Yep I have added a rule on the Windows firewall and also tried with the firewall on and off. I am able to RDP to it from another device in the same network (192.168.1.0/24).

 

Yogi02:

 

I have found that sometimes when there is an intermittent problem, just re-entering the saved password will make it work.

 

Is it possible the IP address has changed?

 

Good Luck

 

 

Yep I am definitely trying to RDP to the correct public/WAN IP address. I have verified this in the router.

 

I have statically configured the IP address 192.168.1.30 on my PC.

 

I never get a prompt to enter the user name and password when trying to RDP, it just eventually times out because of no response from the remote end.

 

davidcole: Is that saying source port 11138?

 

That is the source port which is randomly generated. I tried connecting again and it used a different source port. The destination port is 3389.

 

michaelmurfy:

 

Instead of doing that and opening yourself up (even if it is just for a short time) give Anydesk a go: https://anydesk.com/remote-desktop

 

Tree, tiny, works fast and is secure. Doesn't require you to open any ports etc and works through the harshest of firewalls.

 

I have it running as a service on my parents laptop and have a 100% success rate with logging in.

 

 

Thanks for the suggestion, I'll check it out now. Do you know if it supports wake on LAN?

xpd

xpd
Geek @ Coastguard NZ
13769 posts

Uber Geek

Retired Mod
ID Verified
Trusted
Lifetime subscriber

  #2117171 31-Oct-2018 07:36
Send private message

I use Anydesk every day, great product. 

 

As for WOL, I dont think it does.

 

 

 

 




       Gavin / xpd / FastRaccoon / Geek of Coastguard New Zealand

 

                      LinkTree

 

 

 

surfisup1000
5288 posts

Uber Geek


  #2117178 31-Oct-2018 08:07
Send private message

It should be working and you have done most of the things I'd have tried. 

 

So, something is conflicting in either the router or in windows.

 

Reset your router to factory settings, and reconfigure port forwarding. 

 

 

 

Then try resetting your windows networking...

 

     

  1. Select the Start  button, then select Settings  > Network & Internet  > Status > Network reset.
  2. On the Network reset screen, select Reset now > Yes to confirm.

     

    Wait for your PC to restart and see if that fixes the problem.

     

 

 

 

 

 

Can you run a DMZ test? Or possibly reinstall windows if it is an old installation could be messed up. 

 

 

 

 

 
 
 
 

Move to New Zealand's best fibre broadband service (affiliate link). Free setup code: R587125ERQ6VE. Note that to use Quic Broadband you must be comfortable with configuring your own router.
Linkzor

45 posts

Geek


#2117190 31-Oct-2018 08:27
Send private message

surfisup1000:

 

It should be working and you have done most of the things I'd have tried. 

 

So, something is conflicting in either the router or in windows.

 

Reset your router to factory settings, and reconfigure port forwarding. 

 

 

 

Then try resetting your windows networking...

 

     

  1. Select the Start  button, then select Settings  > Network & Internet  > Status > Network reset.
  2. On the Network reset screen, select Reset now > Yes to confirm.

     

    Wait for your PC to restart and see if that fixes the problem.

     

 

 

 

Can you run a DMZ test? Or possibly reinstall windows if it is an old installation could be messed up. 

 

 

 

 

 

 

 

 

I only had a few minutes to spare this morning before work so didn't have time to do a factory reset but thanks for reminding me about the DMZ feature on the Asus router. I placed my PC in the DMZ and was able to RDP to it over the internet finally. When I removed it from the DMZ I was still able to RDP to it so all is well now kiss

 

Hooray for consumer grade junk eh.

michaelmurfy
meow
13266 posts

Uber Geek

Moderator
ID Verified
Trusted
Lifetime subscriber

  #2117192 31-Oct-2018 08:32
Send private message

Just remember with DMZ you're exposing your whole PC to the internet. If it is not if, it is when to it being pwned.




Michael Murphy | https://murfy.nz
Referral Links: Quic Broadband (use R122101E7CV7Q for free setup)

Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.

surfisup1000
5288 posts

Uber Geek


  #2117236 31-Oct-2018 09:01
Send private message

michaelmurfy:

 

Just remember with DMZ you're exposing your whole PC to the internet. If it is not if, it is when to it being pwned.

 

 

Yes, that is true. 

 

But I suppose this proves that it is the router or router config which is causing the problem.

 

I would think exposing RDP ports is probably a huge risk anyway.  I used to do this years ago, but i was getting some events in my event log that looked like someone had gained access to my machine. 

 

 

 

 

CYaBro
4589 posts

Uber Geek

ID Verified
Trusted

  #2117237 31-Oct-2018 09:03
Send private message

And if you do get it working I would definitely put something like Duo on there for 2FA.

 

It's free!




Opinions are my own and not the views of my employer.

Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00

eero Pro 7 Review
Posted 23-Jul-2025 12:07

BeeStation Plus Review
Posted 21-Jul-2025 14:21

eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01

WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32

RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26

Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24

Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05

Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01

Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01

Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22

Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46

Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42

D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34

Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







RSS feeds
Main feed
Forums feed
Copyright
©2002-2025 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Affiliate links
Samsung
AliExpress
Wise
Sharesies
GoodSync
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright