RDP port: change the default value and basic setup steps
Quite often, many users whouse remote access sessions, the question is how to change the RDP port. Now let's look at the simplest solutions, and also indicate a few basic steps in the configuration process.
What is the RDP protocol for?
First, a few words about what RDP technology is. If you look at the decoding of the abbreviation, you can understand that this is a remote access protocol (Remote Desktop Protocol).
In simple terms, this means of connecting toremote desktop, terminal server, or workstation. Windows settings (and any of the versions of the system) use the default settings, which are suitable for most users. The less it sometimes becomes necessary to change them.
Standard RDP port: do I need to change it?
So, regardless of the modification of Windows, allprotocols have a preset value. This port is RDP 3389, which is used for the communication session (connecting one terminal to a remote one).
With what is the situation connected when the standardvalue need to be changed? First of all, only with the security of the local computer. After all, if you understand, with the standard port installed, in principle, any attacker can easily enter the system. So now let's see how to change the default RDP port.
Changing the settings in the system registry
We note at once that the modification procedure is performed exclusively in manual mode, and there is no reset or setting of new parameters in the remote access client itself.
First we call the standard registry editorcommand regedit in the menu "Run" (Win + R). Here we are interested in the HKLM branch, in which you need to go through the directory tree of the terminal server to the directory RDP-Tcp. In the window to the right, we find the PortNumber key. Its something we need to change.
We go into editing and see there 00000D3D. Many immediately wonder about what it is. And this is just the hexadecimal representation of the decimal number 3389. To specify the port in the decimal form, we use the corresponding line of the representation of the value representation, and then specify the parameter we need.
After that, we overload the system, and when we tryconnect a new RDP port. Another way to connect is to use the special command mstsc / v: ip_address: XXXXX, where XXXXX is the new port number. But that's not all.
Windows Firewall Rules
Alas, the built-in Windows Firewall can block a new port. So, you need to make changes to the settings of the firewall itself.
We call the firewall settings with extendedsecurity settings. Here you must first select incoming connections and click on the line to create a new rule. Now we select the point for creating a rule for the port, then we enter its value for TCP, then we allow the connection, the profile section is left unchanged, and finally we assign the new rule a name, and then press the setup completion button. It remains to reboot the server and, when connecting, specify a new RDP port via a colon in the corresponding line. In theory, problems should not be observed.
RDP port on the router
In some cases, when using a wireless connection, rather than a cable connection, you may need to do a port forwarding on the router (router). Nothing complicated in this.
First, in the properties of the system we resolve the remoteconnection to a computer and specify the users entitled to do so. Then go to the settings menu of the router through the browser (192.168.1.1 or at the end of 0.1 - it all depends on the model of the router). In the field (if the main address is 1.1), it is desirable to specify the address starting with the third one (1.3), and the rule for issuing the address should be prescribed for the second (1.2).
Then, in network connections, we use the detail view, where you should view the details, copy the physical MAC address from there and insert it into the router settings.
Now in the NAT settings section on the modem, enableconnect to the server, add the rule and specify the port XXXXX, which you need to transfer to the standard port RDP 3389. Save the changes and overload the router (without rebooting the new port will not be accepted). You can check the connection on some specialized site like ping.eu in the port testing section. As you can see, everything is simple.
Finally, note that the port values are distributed as follows:
- 0 - 1023 - ports for low-level system programs;
- 1024 - 49151 - ports allocated for private purposes;
- 49152 - 65535 - dynamic private ports.
In general, many users to avoid problems usuallyselect the RDP ports from the third range of the list. However, experts and experts recommend using these values in the settings, as they are suitable for most of the tasks.
As for the port forwarding, thisThe procedure is mainly used only in cases of Wi-Fi connection. As you can see, with a normal wired connection it is not required: just change the values of the registry keys and add rules for the port in the firewall.