How to Enable and Configure RDP Brute-Force Protection. RDP Protection Settings.
RdpGuard
Intrusion prevention system for your Windows Server
Follow:
Like:
Facebook
Google+
Share:

RDP Brute-Force Protection Configuration


Protection Overview

RdpGuard detects and blocks dictionary-based brute-force attacks against RDP Server. It works with all RDP Security layers: RDP Security Layer, Negotiate, SSL (TLS)


To enable RDP protection

1. Start RdpGuard Dashboard and click Tools, Options

tools-options

Click Tools, Options

2. RdpGuard Options dialog will appear, open the Monitoring tab

monitoring-options

RdpGuard Monitoring Options

3. Check Enable RDP protection

4. Click Save. RdpGuard service will be restarted.



RDP protection Configuration

1. Click Tools, Options, Monitoring

2. Click the configure.. link:

configure-link

Click the configure link

RDP Settings dialog will open:

rdp detection engine settings

RDP Detection Engine Settings

Addresses to monitor

As you probably know, Windows doesn't write attacker's ip address to Security event log when RDP connections is made via TLS/SSL.

To work-around this, RdpGuard uses alternate, socket-based approach to detect incoming RDP connections when TLS or Negotiate security layer is specified for RDP encryption.

It listens on RDP ports for an each IP address associated with the machine. This may affect server performance if there are high number of IP addresses associated with the machine.

In order to avoid performance decrease, you may consider limiting the number of IP addresses available for RDP connection:

  • Open the Windows Firewall MMC (wf.msc)
  • Select the Inbound Rules section
  • Get the properties of the Remote Desktop (TCP-In) rule
  • On the Scope tab, choose the option to select specific IP's in the "Local IP Address" section
  • Add the IP address that you want to allow RDP connections to connect to

When you done with the firewall configuration, you may update addresses to monitor in RdpGuard.

3. Click Save to close this dialog and Save to close the RdpGuard Options dialog.

4. Restart RdpGuard Service via the Tools menu

RdpGuard 3.1.7 Free Trial

RdpGuard protects:

Social Connection
RdpGuard Logo
Like Us!
 
People like RdpGuard!
People like us
Our Other Products
FastGlacier
Windows Client for Amazon Glacier - new low-cost storage for data archiving and backup.
Copyright © 2012-2017 NetSDK Software, LLC. All rights reserved.  Terms of Use.  Privacy Policy.