I'd like to start using remote desktop to access my work pc while I'm at
home.
I have real concerns of security breaches. I know I can use strong
passwords for remote desktop, but is there any real way to prevent all
computers from accessing my work pc except for my home pc?
the windows firewall works.
remote desktop uses TCP port 3389 I think
recap. home connecting to work. So run remote desktop on work. And
windows firewall must be set on comp at work.
You go to the windows firewall , and tell it regarding port 3389, to
set scope to global ('cos gotta let computers outside your
subnetwork , anywhere on the internet , to connect).
But, set the windows firewall to only allow the ip of your home pc.
The problem though, is if the ip of your home pc changes.
I think there are services like dyndns that let you use a domain name,
that can reference your changing ip , or something like that. But it
won't help 'cos the windows firewall doesn't let you enter a domain
name.. I'm not sure which do.
My solution will work if you know your ip doesn't change. You could
allow a range of ips.. Or a few ips.. If your ip only changes between
a small range.
Or if your ip is only ever one of a few. I refer to the ip of your
home machine.
Actually, The public ip of your home router, displayed by e.g.
www.whatismyip.com
Once you set your firewall, other comps shouldn't be able to connect
to your work comp. only your home comp should be able to connect. See
if GRC can connect.. e.g. Try port 3389 on shields up at grc.com. If
it says Open, that's bad. If the windows firewall is blocking it, it
should say stealth. Some firewalls may say closed. As long as it
doesn't say open it's fine.
