topic Allowing RDP to pass through ZBF in Network Security https://community.cisco.com/t5/network-security/allowing-rdp-to-pass-through-zbf/m-p/1487247#M663316 <P>I am setting up ZBF for a remote office that has a single server that needs to be reachable via the Internet.&nbsp; So that I can get into the server remotely since it is on a standalone connection from our MPLS network, I have entered the following lines into the router config -</P><P></P><P>ip access-list extended ACL_RDP</P><P>permit tcp any host x.x.x.x eq 3389</P><P></P><P>class-map type inspect match-all RDP</P><P> match access-group name ACL_RDP</P><P></P><P>policy-map type inspect ccp-policy-ccp-cls--1</P><P>&nbsp; class type inspect RDP</P><P>&nbsp;&nbsp;&nbsp; inspect</P><P></P><P>When I type the class type line, I get an error %No specific protocol defined in class RDP for inspections all protocols will be inspected.</P><P></P><P>Is there a better way to do the allowing of RDP through the firewall ?</P><P>Is the error I listed anything to worry about ?</P><P></P><P>Ron</P> Mon, 11 Mar 2019 17:58:21 GMT Ronald Nutter 2019-03-11T17:58:21Z Allowing RDP to pass through ZBF https://community.cisco.com/t5/network-security/allowing-rdp-to-pass-through-zbf/m-p/1487247#M663316 <P>I am setting up ZBF for a remote office that has a single server that needs to be reachable via the Internet.&nbsp; So that I can get into the server remotely since it is on a standalone connection from our MPLS network, I have entered the following lines into the router config -</P><P></P><P>ip access-list extended ACL_RDP</P><P>permit tcp any host x.x.x.x eq 3389</P><P></P><P>class-map type inspect match-all RDP</P><P> match access-group name ACL_RDP</P><P></P><P>policy-map type inspect ccp-policy-ccp-cls--1</P><P>&nbsp; class type inspect RDP</P><P>&nbsp;&nbsp;&nbsp; inspect</P><P></P><P>When I type the class type line, I get an error %No specific protocol defined in class RDP for inspections all protocols will be inspected.</P><P></P><P>Is there a better way to do the allowing of RDP through the firewall ?</P><P>Is the error I listed anything to worry about ?</P><P></P><P>Ron</P> Mon, 11 Mar 2019 17:58:21 GMT https://community.cisco.com/t5/network-security/allowing-rdp-to-pass-through-zbf/m-p/1487247#M663316 Ronald Nutter 2019-03-11T17:58:21Z Re: Allowing RDP to pass through ZBF https://community.cisco.com/t5/network-security/allowing-rdp-to-pass-through-zbf/m-p/1487248#M663326 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>That messasge is not a problem. But you can specify in your class map a protocol and a port. You could match protocol TCP and port 3389 instead of using the ACL. That way the message log will not appear. But&nbsp; your current config must be working fine</P></BODY></HTML> Wed, 23 Jun 2010 14:28:33 GMT https://community.cisco.com/t5/network-security/allowing-rdp-to-pass-through-zbf/m-p/1487248#M663326 Diego Armando Cambronero Arias 2010-06-23T14:28:33Z