Meraki Community

BradHarrison · ‎Nov 24 2023

I understand that you are looking to configure a firewall rule to restrict traffic passing through port 3389 to a specific device. In this case, you would need to configure 2 firewall rules; 1 to allow the specific client via IP address (assuming the client has a static IP configured) to port 3389 using TCP and another to deny all traffic to port 3389. Firewall rules are processed in a top-down manner, which means you would need to order the rules to allow the traffic from the specific IP to port 3389 first, followed by a deny all traffic to port 3389.

BradHarrison · ‎Nov 22 2023

Thanks for the reply. You are correct in saying that all RDP traffic must go through the RDP Gateway. This requires a certificate to be installed on any machine that you want to RDP from, as well as AD permissions for the user. We do this so that we can control who is able to RDP. I will do some testing over the weekend to see if this works. Again, thanks for the quick reply.

BradHarrison · ‎Nov 22 2023

Hi, I am having trouble setting up a rule and wanted to see if I could get some help from the community. I setup an RDP Gateway and I want to restrict all traffic over port 3389 so that it has to come from the RDP Gateway. I've set the rule up a few different ways, but none of them look correct. Can anyone help me with what should be the Source and Destination? I've added a screenshot below of how I think the rule should be setup. Im kind of new to Meraki so any help would be greatly appreciated.

Meraki Community

About BradHarrison

BradHarrison

Community Record

Badges

Re: L3 Rule for RDP Gateway

Re: L3 Rule for RDP Gateway

L3 Rule for RDP Gateway

Re: L3 Rule for RDP Gateway