I wanna Remote desktop from my PC in home to PC in my company but not success
This is my connection diagram
I wanna remote to PC 10.126.123.132 (belong to VLAN 123, I use several VLANs in Core switch) but not success, NAT seems not to work, there's no traffic logs
This is my config..
I can remote from internet to a server in DMZ zone successfully but L3_Trust zone, so I think because of using VLAN in core switch, it requires some other config.. Please help me :)
P/S: The public IP in the pictures is just an example IP
Solved! Go to Solution.
In your nat rule try adding source nat 10.126.125.1.
your dmz may have a default route to the internet but maybe your vlans dont.
take a packet capture on the firewall and the end client.
If you see the syn packet on the end client this would mean the packet is getting forwarded to the client.
Check if you recieve a syn-ack back on the firewall from the client.
If that is not the case then , check the routing on the switch. For testing in the nat rule that you have created for inbound, source nat the traffic to the trustzone interface.
Share the output of pcaps and session if this still does not resolve
Thank you all for your help, I added source translation to IP of L3_Trust interface (10.126.125.1) but still not success when Remote Desktop :(
at this point. take a pcap on firewall and client together. Share the details.
Provide the below details
After trying rdp connection ,in the command line type
1) show session all filter source<your_public_src_ip> destination 126.96.36.199 destination-port 3389
this command will list the running sessions and the left most column is session id. Select a session id
2) show session id<session_id>
Try modifying your source translation
address type = translated address
translated address = 10.126.125.1
Thank you Sir, this is the picture of recive.pcap and drop.pcap, there's nothing in transmit.pcap and firewall.pcap. I'm sorry, due to security reason, I'm not allowed to upload capture file here
188.8.131.52 is my public IP from internet zone
I also run command show session all filter source<your_public_src_ip> destination 184.108.40.206 destination-port 3389 but there's no active session
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!