RT2600ac Router blocking Chrome Remote Desktop

Currently reading
RT2600ac Router blocking Chrome Remote Desktop

M

MarshallZA

3
0
Router
  1. RT2600ac
Operating system
  1. Windows
Mobile operating system
  1. iOS
Hi,

I recently bought a refurbished RT2600ac on ebay. I set it up yesterday and I absolutely love it, its miles ahead of everyone else despite being so old.

The issue that I have is I am trying to dial in to my home PC via Chrome RD but the router keeps blocking the connection, something about threat detected, gain privileges, drop packets, etc.

I need to figure out how to get this to work any ideas on how to set this up properly so it works?

PS: I it needs to be Chrome RD, all other methods/VPN is blocked on my company network, Chrome RD is the only thing they haven't blocked.

Thanks!
 
Sort by date Sort by votes
Hi, welcome to the forum.

You have Threat Prevention enabled and it would seem Chrome RD is triggering it. You can add custom rules in TP to alter how it behaves for specific signatures / source IP / destination IP. If your company has a static IP then you could add a rule that allows access from here.

As for things that the corporate firewall may allow, you might find that there are open ports for web proxy (8080 etc). If you can find an open port and it's not being inspected for application aware usage then you might be able to use TCP 21 (FTP) for other services. It's a bit trial and error.

Once you have found an open port you could use VPN Plus's SSL-VPN to access the home LAN. Synology has just announced the VPN Plus licences are to remain free.
 
Upvote 0
fredbert said:
Hi, welcome to the forum.

You have Threat Prevention enabled and it would seem Chrome RD is triggering it. You can add custom rules in TP to alter how it behaves for specific signatures / source IP / destination IP. If your company has a static IP then you could add a rule that allows access from here.

As for things that the corporate firewall may allow, you might find that there are open ports for web proxy (8080 etc). If you can find an open port and it's not being inspected for application aware usage then you might be able to use TCP 21 (FTP) for other services. It's a bit trial and error.

Once you have found an open port you could use VPN Plus's SSL-VPN to access the home LAN. Synology has just announced the VPN Plus licences are to remain free.
Click to expand...
Hi,

I think it would be easier for me to just disable TP and try again, will do it tonight.

I would rather not fiddle with the company network and scan the open ports, just now I get a call from corporate that I don't want to deal with.

Google/Chrome/RD is fairly innocuous and innocent looking.
 
Upvote 0
MarshallZA said:
I would rather not fiddle with the company network and scan the open ports
Click to expand...
I wouldn't scan ports either. Maybe try a few destination ports that may be expected to be open for normal users to the Internet. You'd have to set VPN Plus to be listening on the port first so you know it works, then browse to it. It's easier to do this while WFH via the company VPN!

MarshallZA said:
I think it would be easier for me to just disable TP and try again
Click to expand...
I'd aim to keep TP enabled in the long run. Even if that means changing the action to Alert/Do Nothing for the few rules that are blocking Chrome RD. But ideally I would look to see if the corporate gateway IPs can have their own rules to allow access while blocking this behaviour from the Internet at large.
 
Upvote 0
fredbert said:
I wouldn't scan ports either. Maybe try a few destination ports that may be expected to be open for normal users to the Internet. You'd have to set VPN Plus to be listening on the port first so you know it works, then browse to it. It's easier to do this while WFH via the company VPN!


I'd aim to keep TP enabled in the long run. Even if that means changing the action to Alert/Do Nothing for the few rules that are blocking Chrome RD. But ideally I would look to see if the corporate gateway IPs can have their own rules to allow access while blocking this behaviour from the Internet at large.
Click to expand...
I tried setting the action to 'do nothing' and it appears to have done nothing because Chrome RD still wont connect. I will try re-install it on my home pc later after work and see if i can get it to work. and yeah could do it on WFH on the VPN.
 
Upvote 0

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Register

Log in

Already have an account? Log in here.

Similar threads

DayVid
Router is blocking access to my.maxon website
Could be a cached DNS resolution, rebooting would definitely flush out the router's cache. In UK...
Replies
4
Views
2,179
fredbert
fredbert
F
Synology Router Question
Welcome to the forum. Go to the Forums list, then scroll down to find the router section...
Replies
1
Views
102
fredbert
fredbert
miamissophiapetrillo
  • Question
Router (RT2600ac) Self-signed Certificate expiration date earlier than date of router set-up
The self-signed certificate is created just to enable secure services to work. But you can create a new...
Replies
1
Views
416
fredbert
fredbert
johnnygoodface
RT6600ax Reset only the (admin) password without factory reset the router
Yes 2FA is turned off by the reset.
Replies
3
Views
860
KC2020
KC2020
Cyberwasp
New router from isp
ok, just ordered a tp link 2.5g for $29 on amazon. Figured it a brand name and I only need 1g so...
Replies
8
Views
985
Cyberwasp
Cyberwasp
S
Router - Managed Switch Configuration
Why do you feel the need for 4 Wifi access points?My home in the UK is fairly large (5xbeds around 230...
Replies
3
Views
1,324
Mick the Saudi
M
Robocub
Threat Prevention kills router access. Other router recommendation.
On the SATA SSD or M2 drives for TP on the 3x 2600’s, I used Velcro strips to isolate drive chassis from...
2
Replies
20
Views
3,573
Jan Janowski
Jan Janowski

Welcome to SynoForum.com!

SynoForum.com is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Register

Trending threads

Back
Top