Problems with RDP connection to Laptops via SSLVPN from internal network
Hello, We have the following problem. We use SSLVPN for remote connection from laptops to internal network. The laptops connect with RDP. This works smoothly. But now we would like to use the reverse way, so you can access the laptops from the internal network with RDP or other stuff. After the appropriate firewall rule config we can ping the laptops, but we can't access them with RDP and I don't know why. I can see the outgoing RDP traffic in the Fortigate FW log but there is no connection established. Is there anyone who can give me a tip to solve this ? Thank you
As per your query to know why this connection is not established, you can try using the sniffer and packet capture commands/debugs mentioned below. This is can tell more detailed insight about this traffic.
Run the debug as mentioned below:
Run 2 putty sessions.
On the first SSH session run the following sniffer command.
#dia sniffer packet any' host <destination machine IP address>' 4 0 l <---- 'l' here is the letter L in lower case.
#dia sniffer packet any' host <destination machine IP address>' 6 0 l <---- 'l' here is the letter L in lower case.
Share the output here or you can convert the file into the .pcap ext for the first SSH session.
Once the commands are ready then run the RDP connection. If you are getting to much traffic for these commands before running the RDP connection then use the following filters to have only RDP traffic on respective SSH sessions.
For the first SSH session use the following command
#dia sniffer packet any' host <destination machine IP address> and port 3389' 4 0 l <---- 'l' here is the letter L in lower case.
#dia sniffer packet any' host <destination machine IP address> and port 3389' 6 0 l <---- 'l' here is the letter L in lower case.
For the second SSH session use the following command
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.