Firewall Blocking RDP
I am running Mac OS 10.4.11. I used to be able to connect using remote desktop from my mac at home to the Mac at the office. The firewall on the Office Mac is blocking the connection.
I have a Verizon modem and I forwarded the 3283 and 3389 ports on the modem. Here is the /sbin/ipfw list from the office Mac:
new-host:~ machineName$ sudo /sbin/ipfw list
Password:
02000 allow ip from any to any via lo*
02010 deny ip from 127.0.0.0/8 to any in
02020 deny ip from any to 127.0.0.0/8 in
02030 deny ip from 224.0.0.0/3 to any in
02040 deny tcp from any to 224.0.0.0/3 in
02050 allow tcp from any to any out
02060 allow tcp from any to any established
02065 allow tcp from any to any frag
02070 allow tcp from any to any dst-port 3283 in
02080 allow tcp from any to any dst-port 5900 in
02090 allow tcp from any to any dst-port 22 in
02100 allow tcp from any to any dst-port 548 in
02110 allow tcp from any to any dst-port 427 in
02120 allow tcp from any to any dst-port 21 in
02130 allow tcp from any to any dst-port 3283 in
02140 allow tcp from any to any dst-port 5900-5902 in
02150 allow tcp from any to any dst-port 3389 in
12190 deny log tcp from any to any
65535 allow ip from any to any
Here is the Firewall Log:
new-host:~ MachineName$
Oct 7 02:55:52 MachineName ipfw: 12190 Deny TCP 0.0.0.0:57647 192.168.1.2:3389 in via en0
Oct 10 06:10:28 MachineName ipfw: 12190 Deny TCP 0.0.0.0:3988 192.168.1.2:3389 in via en0
Oct 10 06:10:31 MachineName ipfw: 12190 Deny TCP 0.0.0.0:3988 192.168.1.2:3389 in via en0
Oct 10 23:31:09 MachineName ipfw: 12190 Deny TCP 0.0.0.0:59550 192.168.1.2:3389 in via en0
Oct 10 23:31:12 MachineName ipfw: 12190 Deny TCP 0.0.0.0:59550 192.168.1.2:3389 in via en0
Oct 10 23:31:18 MachineName ipfw: 12190 Deny TCP 0.0.0.0:59550 192.168.1.2:3389 in via en0
Oct 10 23:32:11 MachineName ipfw: 12190 Deny TCP 0.0.0.0:59554 192.168.1.2:3389 in via en0
Oct 10 23:32:14 MachineName ipfw: 12190 Deny TCP 0.0.0.0:59554 192.168.1.2:3389 in via en0
Oct 10 23:32:20 MachineName ipfw: 12190 Deny TCP 0.0.0.0:59554 192.168.1.2:3389 in via en0
As you can see the list shows that ports 3283 and 3389 are allowed but the firewall logs shows that 3389 is Deny.
I made sure Remote desktop is allowed in the Firewall settings. I even tried Noobproof and still no access. I turned off the firewall to see if that would help, but still connection denied. The only weird thing i saw was when I turned the firewall off was a message that said the firewall was off, but the IP V6 Firewall was still running with 19 rules, but I don't think this should have any effect on the IP V4 connection. I went to canyouseeme.org and I get the connection denied message for both 3283 and 3389.
Thanks.
I have a Verizon modem and I forwarded the 3283 and 3389 ports on the modem. Here is the /sbin/ipfw list from the office Mac:
new-host:~ machineName$ sudo /sbin/ipfw list
Password:
02000 allow ip from any to any via lo*
02010 deny ip from 127.0.0.0/8 to any in
02020 deny ip from any to 127.0.0.0/8 in
02030 deny ip from 224.0.0.0/3 to any in
02040 deny tcp from any to 224.0.0.0/3 in
02050 allow tcp from any to any out
02060 allow tcp from any to any established
02065 allow tcp from any to any frag
02070 allow tcp from any to any dst-port 3283 in
02080 allow tcp from any to any dst-port 5900 in
02090 allow tcp from any to any dst-port 22 in
02100 allow tcp from any to any dst-port 548 in
02110 allow tcp from any to any dst-port 427 in
02120 allow tcp from any to any dst-port 21 in
02130 allow tcp from any to any dst-port 3283 in
02140 allow tcp from any to any dst-port 5900-5902 in
02150 allow tcp from any to any dst-port 3389 in
12190 deny log tcp from any to any
65535 allow ip from any to any
Here is the Firewall Log:
new-host:~ MachineName$
Oct 7 02:55:52 MachineName ipfw: 12190 Deny TCP 0.0.0.0:57647 192.168.1.2:3389 in via en0
Oct 10 06:10:28 MachineName ipfw: 12190 Deny TCP 0.0.0.0:3988 192.168.1.2:3389 in via en0
Oct 10 06:10:31 MachineName ipfw: 12190 Deny TCP 0.0.0.0:3988 192.168.1.2:3389 in via en0
Oct 10 23:31:09 MachineName ipfw: 12190 Deny TCP 0.0.0.0:59550 192.168.1.2:3389 in via en0
Oct 10 23:31:12 MachineName ipfw: 12190 Deny TCP 0.0.0.0:59550 192.168.1.2:3389 in via en0
Oct 10 23:31:18 MachineName ipfw: 12190 Deny TCP 0.0.0.0:59550 192.168.1.2:3389 in via en0
Oct 10 23:32:11 MachineName ipfw: 12190 Deny TCP 0.0.0.0:59554 192.168.1.2:3389 in via en0
Oct 10 23:32:14 MachineName ipfw: 12190 Deny TCP 0.0.0.0:59554 192.168.1.2:3389 in via en0
Oct 10 23:32:20 MachineName ipfw: 12190 Deny TCP 0.0.0.0:59554 192.168.1.2:3389 in via en0
As you can see the list shows that ports 3283 and 3389 are allowed but the firewall logs shows that 3389 is Deny.
I made sure Remote desktop is allowed in the Firewall settings. I even tried Noobproof and still no access. I turned off the firewall to see if that would help, but still connection denied. The only weird thing i saw was when I turned the firewall off was a message that said the firewall was off, but the IP V6 Firewall was still running with 19 rules, but I don't think this should have any effect on the IP V4 connection. I went to canyouseeme.org and I get the connection denied message for both 3283 and 3389.
Thanks.
Mac OS X (10.4.11)
