Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Moxeq
New Contributor II

Created on ‎12-09-2023 10:42 PM

RDP Over IPsecVPN FortiClient.

Hello guys,

 

I'm running Dial up VPN, the users use it to copy files from server to their PCs, the copying and the speed just worked fine when the services in the policy configure as "ALL", however, when the services was just RDP "3389" the connection was too slow and the file copying was not completed.

 

Are there any suggestions to limit the services and have a good connection at the same time?

 

thanks in advance 

Mox

FortiGate  

MoX, Cybersecurity Engineer
MoX, Cybersecurity Engineer
Labels:
692
0 Kudos
2 REPLIES 2
funkylicious
SuperUser
SuperUser

Created on ‎12-10-2023 12:37 AM

Hi,

Try adding a custom service for UDP/3389 to that rule.

As far as i can remember the defauly RDP service only has TCP/3389, it might help.

"jack of all trades, master of none"
"jack of all trades, master of none"
666
ede_pfau
SuperUser
SuperUser

Created on ‎12-10-2023 04:42 AM

I'd set the service back to "ALL", let some traffic pass and then right-click the policy and "FortiView by policy". Then you could observe the protocols/destination ports used IRL.

 

My (uneducated) guess would be to include port tcp/445 (SMB), or some DNS (udp/tcp 53, udp/137). Some of which are included in the preconfigured "WindowsAD" service group.

Ede Kernel panic: Aiee, killing interrupt handler!
Ede Kernel panic: Aiee, killing interrupt handler!
652
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.