Remote Desktop Protocol (RDP)
wikipedia:Remote Desktop Protocol (RDP) is a proprietary protocol developed by Microsoft, which provides a user with a graphical interface to connect to another computer over a network connection. The user employs RDP client software for this purpose, while the other computer must run RDP server software. RDP server software is not enabled by default.
RDP server since version 8 (Windows Server 2012) support automatic selection of communication transport protocol using TCP [1], UDP[2] or both on port 3389 depending on communication line on port 3389. Microsoft allows to select if you want to use both protocols or one of them using gpedit.msc
command[3].
Versions
- Version 10: H.264/AVC
- Version 9
- Version 8 (Windows Server 2012): automatic selection of TCP or UDP as transport protocol, multitouch support
- 6.0 NLA
- Windows NT 4.0 Terminal Server Edition (1998) including RDP
Related terms
- Remote Desktop Session Host (RDSH) role (Windows Server)
gpedit.msc
- Lockout policy (Windows)
- PAN-OS:
show session all | match ms-rdp
- Ekran session recording https://www.youtube.com/watch?v=--DkE6Fccf0
Software to protect RDP from brute force attacks
RdpGuard
- IPBan: https://ipban.com/ (Linux and Windows)
- Cyberarms IDDS: https://cyberarms.net/ (Windows)
Client sofware
- Microsoft Remote Desktop
- mRemoteNG (only Windows)
- FreeRDP
- Quick Assist (Windows 10)
Activities
- Activate RDP and enable multiple remote desktop session on Windows Server https://www.hostwinds.com/guide/allow-multiple-remote-desktop-rdp-connections-in-windows-server-2012-2016/ .
- Read differences between TeamViewer and RDP, https://community.teamviewer.com/t5/Knowledge-Base/What-is-the-difference-between-TeamViewer-and-RDP/ta-p/3713
- Read https://serverfault.com/questions/12005/what-port-should-i-open-to-allow-remote-desktop
- Understand differences between Windows 10 and Windows Server, and how to bypass 1 session limitation of Windows 10 http://woshub.com/how-to-allow-multiple-rdp-sessions-in-windows-10/
- Review article about RDP logging: https://ponderthebits.com/2018/02/windows-rdp-related-event-logs-identification-tracking-and-investigation/
- Understand "Allow connections only from computers running Remote Desktop with Network Level Authentication" option
Related activities
Related terms
See also
- VNC, TeamViewer, RDP, SPICE,
virsh vncdisplay
,virsh domdisplay
, mRemoteNG, ShareMouse, VNC Connect, Screen sharing, TightVNC, TigerVNC - RDP, VNC, MRemoteNG, Microsoft Remote Desktop, FreeRDP. VDI, NLA, AnyDesk, TeamViewer, mousemux.com, KVM switch,
mstsc
, Remote Desktop Service (RDS)
Advertising: