Do you recognize a good idea when you see one? We want to hear from you!
Header Image

I suggest you ...

Web Application Firewall: Remote Desktop Gateway support

Similar to support for Outlook Anywhere, it would be really beneficial if the WAF allowed for the publishing of Remote Desktop Gateway and handled those methods. RDG_OUT_DATA followed by RPC_IN_DATA and RPC_OUT_DATA, and including /RemoteDesktopGateway in the request. It seems like common functionality that many customers must be looking for...

87 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Anonymous shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    7 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • Anonymous commented  ·   ·  Flag as inappropriate

        I need to update my current UTM's, and it won't be with Sophos unless this feature can be added very soon

      • Anonymous commented  ·   ·  Flag as inappropriate

        Please add a pass through RPC RDP Gateway Traffic feature to the WAF like Outlook Anywhere

      • Will RWill R commented  ·   ·  Flag as inappropriate

        This needs to be worked on more. Even though there is a guide on how to publish Remote Desktop Gateway thru the Web Application Firewall, RPC traffic is still being affected.

        2015:02:04-22:16:41 secure reverseproxy: [Wed Feb 04 22:16:41.614280 2015] [authz_blacklist:warn] [pid 3381:tid 4122061680] [client 66.76.13.33:22927] DNS lookup for 33.13.76.66.dnsbl.proxybl.org. failed: Temporary failure in name resolution

        2015:02:04-22:16:41 secure reverseproxy: id="0299" srcip="66.76.13.33" localip="173.219.156.15" size="13" user="-" host="66.76.13.33" method="RPC_IN_DATA" statuscode="401" reason="-" extra="-" exceptions="SkipURLHardening" time="10164470" url="/rpc/rpcproxy.dll" server="remote.domain.net" referer="-" cookie="-" set-cookie="-"

        2015:02:04-22:16:51 secure reverseproxy: [Wed Feb 04 22:16:51.828767 2015] [authz_blacklist:warn] [pid 3381:tid 4122061680] [client 66.76.13.33:22927] DNS lookup for 33.13.76.66.dnsbl.proxybl.org. failed: Temporary failure in name resolution

        2015:02:04-22:16:51 secure reverseproxy: [Wed Feb 04 22:16:51.829992 2015] [authz_blacklist:warn] [pid 3381:tid 4113668976] [client 66.76.13.33:50077] DNS lookup for 33.13.76.66.dnsbl.proxybl.org. failed: Temporary failure in name resolution

        2015:02:04-22:16:51 secure reverseproxy: id="0299" srcip="66.76.13.33" localip="173.219.156.15" size="13" user="-" host="66.76.13.33" method="RPC_OUT_DATA" statuscode="401" reason="-" extra="-" exceptions="SkipURLHardening" time="10077621" url="/rpc/rpcproxy.dll" server="remote.domain.net" referer="-" cookie="-" set-cookie="-"

        2015:02:04-22:16:56 secure reverseproxy: [Wed Feb 04 22:16:56.923907 2015] [proxy_msrpc:error] [pid 3381:tid 4122061680] (110)Connection timed out: [client 66.76.13.33:22927] RPC_IN_DATA: Failed to sync Outlook Session 1d52475a-8b71-d26f-aa85-c55df210829c: -1

        2015:02:04-22:16:56 secure reverseproxy: [Wed Feb 04 22:16:56.924101 2015] [proxy_msrpc:error] [pid 3381:tid 4122061680] (70015)Could not find specified socket in poll list.: [client 66.76.13.33:22927] RPC_IN_DATA: There is no registered Outlook Session 1d52475a-8b71-d26f-aa85-c55df210829c in cache

        2015:02:04-22:16:56 secure reverseproxy: id="0299" srcip="66.76.13.33" localip="173.219.156.15" size="0" user="-" host="66.76.13.33" method="RPC_IN_DATA" statuscode="200" reason="-" extra="-" exceptions="SkipURLHardening" time="15251149" url="/rpc/rpcproxy.dll" server="remote.domain.net" referer="-" cookie="-" set-cookie="-"

        2015:02:04-22:17:02 secure reverseproxy: [Wed Feb 04 22:17:02.040162 2015] [authz_blacklist:warn] [pid 3381:tid 4113668976] [client 66.76.13.33:50077] DNS lookup for 33.13.76.66.dnsbl.proxybl.org. failed: Temporary failure in name resolution

        2015:02:04-22:17:02 secure reverseproxy: [Wed Feb 04 22:17:02.051839 2015] [proxy_msrpc:error] [pid 3381:tid 4113668976] (70015)Could not find specified socket in poll list.: [client 66.76.13.33:50077] RPC_OUT_DATA: There is no registered Outlook Session 1d52475a-8b71-d26f-aa85-c55df210829c in cache

        2015:02:04-22:17:16 secure reverseproxy: id="0299" srcip="66.76.13.33" localip="173.219.156.15" size="0" user="-" host="66.76.13.33" method="RPC_OUT_DATA" statuscode="200" reason="-" extra="-" exceptions="SkipURLHardening" time="24211617" url="/rpc/rpcproxy.dll" server="remote.domain.net" referer="-" cookie="-" set-cookie="-"

      • Troy GleasonTroy Gleason commented  ·   ·  Flag as inappropriate

        Yes, we too am looking for functionality. Since we switched from forwarding all port 80 and 443 requests to using the web application support, we have lost our ability to use the remote desktop gateway. Adding this to the Web Application Firewall would be terrific.

      • Christian KrüsiChristian Krüsi commented  ·   ·  Flag as inappropriate

        I would like this feature also. There is another Feature request for the same functionality at http://feature.astaro.com/forums/17359-utm-formerly-asg-feature-requests/suggestions/4160207-web-application-security-remote-desktop-support. And there are many post in the Forum like http://www.astaro.org/closed-forums-read-only/utm-9-betas/utm-9-1-public-beta/47321-9-092-feature-remote-desktop-gateway-waf-not-working.html where the astaro beta bot says that this is tracked as mantis ID #25441

      Feedback and Knowledge Base