Lemmi 0 Posted August 1 Posted August 1 The option "incoming RDP-Connections limiting..." is not available in the policies on ESET PROTECT ON-PREM. So new rolled out clients don't accept incoming RDP-connections from other networks than the own one (LAN, same subnet). You cannot find this option in ESET Endpoint Security only in Endpoint Antivirus It is my oldest installation coming from ESET Remote Administrator 6 -> ESET PROTECT 11 since 2015. Maybe a problem with policy-migration? Kind regards.
Administrators Marcos 5,468 Posted August 1 Administrators Posted August 1 The setting will be added with the next version of the Configuration module soon. For security reasons we strongly recommend keeping the default setting and allowing RDP only from the trusted zone instead of all networks.
Lemmi 0 Posted August 1 Author Posted August 1 Thanks for the fast answer. I'm aware of the security. No machine is reachable from outside without vpn. One option would be to configure the "trusted zone" containing all allowed subnets. What is the best approach for that?
Administrators Solution Marcos 5,468 Posted August 1 Administrators Solution Posted August 1 For instance, you can add your local subnets directly to the Trusted zone in the IP sets setup: Alternatively you can use network connection profiles and the Private profile which is trusted:
Recommended Posts