<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:arial,helvetica,sans-serif;font-size:10pt"><div style="font-family: arial,helvetica,sans-serif; font-size: 10pt;"><span>I tried using the port you suggested and got the same result. I'm able to verify my firewall is letting the traffic through and that my ISP is not blocking the port by using <a target="_blank" href="http://www.canyouseeme.org">www.canyouseeme.org</a> . Again, all my settings work when I'm not going through the corporate firewall.</span><br><br>Can you send me your whole config file for both your client and server sides? I'm wondering if it has to do with my certificate settings.<br><br>Thanks,<br><br>Frank<br><br><div style="font-family: times new roman,new york,times,serif; font-size: 12pt;">----- Original Message ----<br>From: Carter Browne <xxxx><br>To: garberfc <xxxx><br>Sent: Monday, October 22, 2007 8:07:11
AM<br>Subject: Re: [stunnel-users] Using stunnel for RDP / Proxy / Firewall<br><br>I do this all the time. The way I do it is to connect locally to RDP
on<br>a non-stardard port. In the RDP dialog box, I have 127.0.0.10:12121,<br>then in stunnel on the local side is:<br><br>[xxx-rdp]<br>accept = 127.0.0.10:12121<br>connect = server:12122<br>client = yes<br><br>on the remote side is<br><br>[rdp-incoming]<br>accept = 12122<br>connect = 3389<br>client = no.<br><br>Normally RDP listens for any connection to port 3389, so I found it was<br>easiest to get to to work by moving off that port. Note that you have<br>to open port 12122 in the firewall on the remote side. On the other<br>hand, you can close 3389 on the remote side which takes away an obvious<br>port for hackers.<br><br>Carter<br><br>garberfc wrote:<br>> Hi All<br>><br>> I'm a relative newbie to Stunnel, and am trying to set up a tunnel so
I can<br>> Remote Desktop from work to my PC/server at home.<br>><br>> I'm using versions 4.20 of the Windows binaries.<br>><br>> I've tested the configuration and it works from home using a laptop
that is<br>> going through my firewall <br>> when I enter my domain home (so my firewall is set up correctly). I
tried a<br>> variety of common ports and got the same response every time. I had
to use<br>> the 127.0.0.2 on the client because Remote Desktop didn't want me
connecting<br>> to myself...<br>><br>> When I try if from work I get a dialog box:<br>> The client could not establish a connection to the remote computer.<br>> The most likely causes for this error are:<br>> 1) Remote connections might not be enabled at the remote computer.<br>> 2)The maximum number of connections was exceeded at the remote
computer.<br>> 3) A network error occurred while establishing the connection.<br>><br>> My config is as follows:<br>><br>> #Client<br>> ;cert = stunnel.pem<br>> ;key = stunnel.pem<br>><br>> ; Some performance tunings<br>> socket = l:TCP_NODELAY=1<br>> socket = r:TCP_NODELAY=1<br>><br>> ; Some debugging stuff useful for troubleshooting<br>> debug = 7<br>> output = stunnel.log<br>><br>> ; Use it for client mode<br>> client = yes<br>><br>> ; Service-level configuration<br>> [https-RDT]<br>> accept = 127.0.0.2:3389<br>> connect = xx.xx.xx.xx:1494<br>><br>><br>> #Server<br>> ; Some performance tunings<br>> socket = l:TCP_NODELAY=1<br>> socket = r:TCP_NODELAY=1<br>><br>> ; Some debugging stuff useful for troubleshooting<br>> debug = 7<br>> output = stunnel.log<br>><br>> ; Use it for client mode<br>> client = no<br>><br>> ;
Service-level configuration<br>> [https-RDT]<br>> accept = 1494<br>> connect = localhost:3389<br>><br>><br>> Is there something I need to do to traverse this proxy? Any help
would be<br>> greatly appreciated!<br>><br>> <br></div><br></div></div></body></html>