Remote Desktop outbound connection fails
Home > IT Answers > Networking > Remote Desktop outbound connection fails
jet10520
0 pts.
0
Q:
Remote Desktop outbound connection fails
Network security, Firewalls, Intrusion management, Incident response, Forensics, Wireless, VPN
I have an ISA Server 2000 and Windows 2000 Small Business Server Edition.

I can connect to a external (Internet) Terminal Server from the ISA firewall computer, but I can not connect from the internal Workstations, which have the Firewall Client installed.

I already enabled the RDP (Terminal Services) protocol in the ISA firewall and have a Site Rule to Allow All.

The firewall log (all selected) shows:
(Notice that for each RDC intent it creates three for rows, and the forth row gives error code 20000, or 20001)

192.168.0.53 Jose E. Torres mstsc.exe:3:5.1 Y 2005-09-12 19:26:36 fwsrv MAILSERVER - 206.242.150.111 206.242.150.111 - 16 - - - - GHBN - - - 0 - HTTP Allow rule 7373 0
192.168.0.53 Jose E. Torres mstsc.exe:3:5.1 Y 2005-09-12 19:26:36 fwsrv MAILSERVER - - 206.242.150.111 3389 16 - - 3389 TCP Connect - - - 0 - A Remote Desktop Allow rule 7373 8677
192.168.0.53 Jose E. Torres mstsc.exe:3:5.1 Y 2005-09-12 19:26:36 fwsrv MAILSERVER - - 206.242.150.111 3389 16 - - 3389 TCP Connect - - - 0 - A Remote Desktop Allow rule 7373 8677
192.168.0.53 Jose E. Torres mstsc.exe:3:5.1 Y 2005-09-12 19:27:10 fwsrv MAILSERVER - - 206.242.150.111 3389 34703 457 7357 3389 TCP Connect - - - 20001 - A Remote Desktop Allow rule 7373 8677
ASKED: Sep 12 2005  5:30 PM GMT
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
RELATED QUESTIONS
0
bobkberg
895 pts.
0
A:
 RATE THIS ANSWER
0
Click to Vote:
  •   0
  •  0
  • AddThis Social Bookmark Button
I don't have any answers offhand, but I am curious about a couple of things - maybe we can make this dialog entertaining enough to elicit some more knowledgeable responses (grin).

On the 4th line, I see a different pattern in the logs...
3389 34703 457 7357 3389 where I assume the 3389 at the beginning and end of that fragment are the inner destination port and the outer destination port.
On the earlier lines, it just shows:"3389 16 - - 3389 "

Any idea what the significance of those other numbers are?

Also wondering, does the internal workstation see the connection attempt as a timeout, or a connection refusal?

I'm assuming that the logs you've shown are from the firewall/ISA server. Are there any relevant logs on the external Terminal Server?

Bob
Last Answered: Sep 13 2005  0:55 AM GMT by bobkberg   895 pts.
  •   
0
0
RSS - Discussions Help
Discuss This Answer:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _



_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

jet10520   0 pts.  |   Sep 13 2005  11:29AM GMT

The log fields are explained in this link:
 <a href="http://www.microsoft.com/resources/documentation/isa/2000/enterprise/proddocs/en-us/isadocs/m_s_c_loggingfields.mspx" title="http://www.microsoft.com/resources/documentation/isa/2000/enterprise/proddocs/en-us/isadocs/m_s_c_loggingfields.mspx" target="_blank">http://www.microsoft.com/resources/docum…</a>

 <a href="http://support.microsoft.com/default.aspx?scid=kb;en-us;284818" title="http://support.microsoft.com/default.aspx?scid=kb;en-us;284818" target="_blank">http://support.microsoft.com/default.asp…</a>

I do not have access to the Terminal Server Logs of the Internet server I am connecting to. I ask for help to them but they refused $$$$. But any way I can connect from the ISA server itself, so I guess the connection is not being denied.

I get RDC error messages randomly (20000 , 20001 errors produce two different error messages in RDC)

One gives a timeout error, and the other gives “Remote connections might not be enable or the computer might be too busy …”

 
0