Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 39 subscribers
  • Views 1769 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Somebody successfully pblished Windows Terminalserver 2019 with Sophos XG

GernotMeyer

Hi,

does somebody successfully pblished Windows Terminalserver 2019 with Sophos XG?

If yes: Any hints how to?

I am able to get the rdweb page available from outside.

But when starting an app the comes user credentials pop up from internal server and aftger some time timeout...

Thanks for hints

Gernot



This thread was automatically locked due to age.
Parents
  • 0

    We managed to get it going and I wanted to paste screenshots of our config but apparently that is not supported on this forum from 199x Rolling eyes

    Basically create a policy like:
    Enable RPC (Pass Outlook Anywhere)
    Mode: Reject
    No cookie signing
    Static URL hardening enabled for:
    /
    /rpc
    /favicon.ico
    /rpc/rpcproxy.dll?localhost:3388
    /rpc/rpcproxy.dll
    /rpc/rpcWithCert

    No form hardening
    No AV
    Block bad repu: enabled
    skip remote lookups: disabled
    Common threat filter: On (level 1)
    Skip filter rules:
    911100
    920100
    920340
    920440
    960015
    960032
    960035
    960911
    981172
    981176
    981204
    SQL injection diabled - all others enabled

    Then in your WAF rule don't use Path Specific Routing and in the exceptions section create 1 that disables URL hardening for these sites:

    /RDWeb/*,/rpc/*,/rpcWithCert/*


    Rasmus

  • 0 in reply to Ase IT

    Hello Ali,

    You can add screenshots to the post.

    You just need to click the Insert bottom > Image/video/file > (in the new window that open, click the gray letters) >> UPLOAD, ( a new window will open) search the screenshot you want to upload), click OPEN, and then OK. 

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
  • 0 in reply to emmosophos

    Hi Emmanuel,

    Yeah I know. But the fact that you needed two full lines to describe how, kind of proves my point. This is 2022, days of HTML5 etc., and most forum users expect CTRL-V and inline images. You can consider it a feature request :)

  • 0 in reply to Ase IT

    offtopic: STRG+V works here. Most of the times.

    From my experience: if nothing happens, the image in clipboard is probably too big (4K display, fullsize window screenshot?). shrink it before pasting.

    If still not working: start a new in private session to avoid cache issues.

    btw: I must admit I never ever thought this grey text would be clickable or open a new upload file window. This should be made better visible..

     (pasted by STRG+V)

Reply
  • 0 in reply to Ase IT

    offtopic: STRG+V works here. Most of the times.

    From my experience: if nothing happens, the image in clipboard is probably too big (4K display, fullsize window screenshot?). shrink it before pasting.

    If still not working: start a new in private session to avoid cache issues.

    btw: I must admit I never ever thought this grey text would be clickable or open a new upload file window. This should be made better visible..

     (pasted by STRG+V)

Children
Unfiltered HTML