Mailinglist Archive: opensuse-security (232 mails)

< Previous Next >
Re: [suse-security] Susefirewall2 rdp access nightmare
  • From: Polarizer <Polarizer@xxxxxxxxxx>
  • Date: Thu, 06 Oct 2005 10:34:02 +0200
  • Message-id: <20051006083317.0180082B5@xxxxxxxxxxx>
Try to examine the packet flow with some logging rules on the gate.

[1]iptables -I INPUT --jump LOG -p tcp --dport 3389
[2]iptables -I INPUT --jump LOG -p tcp --sport 3389
[3]iptables -I OUTPUT --jump LOG -p tcp --dport 3389
[4]iptables -I OUTPUT --jump LOG -p tcp --sport 3389

intranet|dmz --- [1][4] gate|firewall [3][2] ---- internet|ext.rdp

And yes, it's a good idea to put your rdp-server into the dmz!

the polarizer

< Previous Next >
Follow Ups