Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Moxeq
New Contributor II

RDP Over IPsecVPN FortiClient.

Hello guys,

 

I'm running Dial up VPN, the users use it to copy files from server to their PCs, the copying and the speed just worked fine when the services in the policy configure as "ALL", however, when the services was just RDP "3389" the connection was too slow and the file copying was not completed.

 

Are there any suggestions to limit the services and have a good connection at the same time?

 

thanks in advance 

Mox

FortiGate 

MoX, Cybersecurity Engineer
MoX, Cybersecurity Engineer
2 REPLIES 2
funkylicious
Contributor III

Hi,

Try adding a custom service for UDP/3389 to that rule.

As far as i can remember the defauly RDP service only has TCP/3389, it might help.

geek
geek
ede_pfau
Esteemed Contributor III

I'd set the service back to "ALL", let some traffic pass and then right-click the policy and "FortiView by policy". Then you could observe the protocols/destination ports used IRL.

 

My (uneducated) guess would be to include port tcp/445 (SMB), or some DNS (udp/tcp 53, udp/137). Some of which are included in the preconfigured "WindowsAD" service group.


Ede

"Kernel panic: Aiee, killing interrupt handler!"
Ede"Kernel panic: Aiee, killing interrupt handler!"
Top Kudoed Authors