What ports need to be open to offer remote assistance?

[Guest]

if all ports were off on the firewall between 2 networks, what ports need to
be open to offer remote assistance from a machine in one network to a machine
in the other.

These are actually subnets that i believe have a FW rule or two blocking
certain ports because when i try to offer assistance from my machine and i
put in the host name or IP of a machine in the other subnet i get a msg that
says "The remote server machine does not exist or is unavailable." I can
successfully offer assistance to other subnets just fine, and i know the
machines in the problem subnet are set to accept remote assistance.

I can ping and RDP to the machines, but the offer remote tool cannot see the
machines.

any ideas?

Thank you

 

[Guest]

port 3389

Q308127 - How to Manually Open Ports in Internet Connection Firewall in
Windows XP: http://support.microsoft.com/default.aspx?scid=kb;en-us;Q308127

304304 - Configuring the Remote Desktop Client to Connect to a Specific
Port: http://support.microsoft.com/?kbid=304304

Q306759 - How to Change the Listening Port for Remote Desktop:
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q306759

 

[Guest]

thanks Mark,

i know this port is already open since i can rdp to the machines and telnet
to the port from my machine to the other machines. i will look through the
articles you referenced, but it seems like there's got to be other ports
required. Remeber i want to use the offer remote assistance support tool
from help and support.

banging head still

 

[Guest]

My guess would be the machine in question is behind NAT router. There is a
way to hack an email invite from them.

When you get the email requesting assistance,save the attachment to disk.
Right-click, Open With, and choose Notepad. You will see a line like this:
RCTICKET="65538,1,192.168.0.4:3389;novicecomputer:3389, This is the private
IP address and the name of the person requesting help's computer, followed by
the port number. Insert the IP address of the NAT router and port number in
front of the private IP address. (see http://www.whatismyip.com ) like this:
206.192.44.102:3389; And final line like this:
RCTICKET="65538,1,206.192.44.102:3389;192.168.0.4:3389;novicecomputer:3389,
Save file. [If the originating party is behind a NAT router, then he will
have to forward the 3389 port to his internal address, per the instructions
for his router. If both persons are behind a NAT router, then both will have
to do this.]

 

[Guest]

Thanks Mark,
I had to step away from this for a few days, but i came up with the single
question i think knowing the answer to will provide what i didn't know.

Question:

Does using the offer remote assistance tool in xp require bi-directional
communication over port 3389?

port 3389 was open into this vlan which explains why i could rdp to the
machines; however, we had blocked 3389 out of this particular vlan to keep
these users from RDP'ing around the network and re-enabling 3389 out of that
vlan solved the problem.

your thoughts?

My guess would be the machine in question is behind NAT router. There is a
way to hack an email invite from them.

When you get the email requesting assistance,save the attachment to disk.
Right-click, Open With, and choose Notepad. You will see a line like this:
RCTICKET="65538,1,192.168.0.4:3389;novicecomputer:3389, This is the private
IP address and the name of the person requesting help's computer, followed by
the port number. Insert the IP address of the NAT router and port number in
front of the private IP address. (see http://www.whatismyip.com ) like this:
206.192.44.102:3389; And final line like this:
RCTICKET="65538,1,206.192.44.102:3389;192.168.0.4:3389;novicecomputer:3389,
Save file. [If the originating party is behind a NAT router, then he will
have to forward the 3389 port to his internal address, per the instructions
for his router. If both persons are behind a NAT router, then both will have
to do this.]
--
Mark L. Ferguson

thanks Mark,

i know this port is already open since i can rdp to the machines and telnet
to the port from my machine to the other machines. i will look through the
articles you referenced, but it seems like there's got to be other ports
required. Remeber i want to use the offer remote assistance support tool
from help and support.

banging head still