Is it safe to use Internet-facing RDP in combination with IP-whitelisting on Windows Firewall?

Jan Ouwehand

7/7/23, 2:33 PM

I am using a VPS that I connect to using RDP over the internet. Since I was experiencing an incessant stream of brute force attacks on the RDP, I configured the windows firewall to only allow certain IP-addresses to connect. This seems to work like a charm as the Failed Audit Log stays clean now. Yet I wonder if this practice is in fact secure.

0 + 0

security

rdp

whitelist

Score:0

Server

John Mahowald

7/7/23, 3:57 PM

Multiple security controls are always better than one. Defense in depth.

Review MITRE's index of remote desktop protocol and its citations. Consider some of the ways to improve detection and mitigation.

Audit users allowed to RDP
Network segmentation (your firewall rules fall in this category)
Bastion host, possibly using an implementation of remote desktop gateway protocol
Multi-factor authentication
Review login sessions

0 + 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Is it safe to use Internet-facing RDP in combination with IP-whitelisting on Windows Firewall?

TH: ปลอดภัยไหมที่จะใช้ RDP ที่เชื่อมต่ออินเทอร์เน็ตร่วมกับการระบุ IP ที่อนุญาตพิเศษบน Windows Firewall

RO: Este sigur să utilizați RDP cu acces la Internet în combinație cu lista albă IP pe Windows Firewall?

RU: Безопасно ли использовать RDP с выходом в Интернет в сочетании с белым списком IP-адресов в брандмауэре Windows?

VI: Có an toàn khi sử dụng RDP kết nối với Internet kết hợp với danh sách trắng IP trên Tường lửa của Windows không?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.