6 Oct
2005
6 Oct
'05
08:34
Try to examine the packet flow with some logging rules on the gate. [1]iptables -I INPUT --jump LOG -p tcp --dport 3389 [2]iptables -I INPUT --jump LOG -p tcp --sport 3389 [3]iptables -I OUTPUT --jump LOG -p tcp --dport 3389 [4]iptables -I OUTPUT --jump LOG -p tcp --sport 3389 intranet|dmz --- [1][4] gate|firewall [3][2] ---- internet|ext.rdp And yes, it's a good idea to put your rdp-server into the dmz! the polarizer http://www.codixx.de/polarizer.html