Project

General

Profile

Actions
Copy link

Bug #1873

closed

Layer 7 RDP

Added by Anonymous almost 14 years ago. Updated over 13 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Start date:
09/13/2011
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Affected Version:
Affected Plus Version:
Affected Architecture:

Description

If you create a Layer7 filter with RDP blocked and assign it to a LAN (I didn't test WAN) it won't block RDP sessions. You can just connect with RDP over the internet to a remote server. Blocking port 3389 isn't a solution because people can use other ports.

Actions
Copy link
 #1

Updated by Ermal Luçi almost 14 years ago

You have to show more how you have configured this.
Usually its better to go through the forum first for such things to avoid configuration problems.

Actions
Copy link
 #2

Updated by Anonymous almost 14 years ago

We had a new pfsense installation with no other rules then the L7 rule. We just configured it as documented in you (small) documentation. You can't do much wrong setting up a L7 filtering rule ...

Actions
Copy link
 #3

Updated by Anonymous almost 14 years ago

HTTP and SSH works... RDP not. This means that the L7 rule is in use

Actions
Copy link
 #4

Updated by Ermal Luçi over 13 years ago

You are sure your rdp is not encrypted?

Actions
Copy link
 #5

Updated by Chris Buechler over 13 years ago

  • Status changed from New to Closed

the filters come from l7filter so it would need to be fixed there. They classify RDP as "OK: Probably works", but they're probably referring to older OS versions.

Actions
Copy link

Also available in: Atom PDF