{"id":1956,"date":"2025-11-01T14:30:04","date_gmt":"2024-02-10T20:06:13","guid":{"rendered":""},"modified":"2025-02-02T00:46:17","modified_gmt":"2025-02-01T23:46:17","slug":"how-to-secure-rdp-through-vpn-and-restrict-logins-to-specific-ip-on-windows-server-2019","status":"publish","type":"post","link":"https:\/\/netcloud24.com\/knowledgebase\/how-to-secure-rdp-through-vpn-and-restrict-logins-to-specific-ip-on-windows-server-2019\/","title":{"rendered":"How to Secure RDP through VPN and Restrict Logins to Specific IP on Windows Server 2019"},"content":{"rendered":"<h4>1. <strong>Set Up VPN on the Server:<\/strong><\/h4>\n<ul>\n<li><strong>Step 1:<\/strong> Open &#8220;Server Manager.&#8221;<\/li>\n<li><strong>Step 2:<\/strong> Select &#8220;Add roles and features.&#8221;<\/li>\n<li><strong>Step 3:<\/strong> Follow the wizard to add the &#8220;Remote Access&#8221; role.<\/li>\n<li><strong>Step 4:<\/strong> Choose &#8220;DirectAccess and VPN (RAS)&#8221; as the role to install.<\/li>\n<li><strong>Step 5:<\/strong> Follow the wizard to complete the VPN configuration.<\/li>\n<\/ul>\n<h4>2. <strong>Configure Access Policy for RDP:<\/strong><\/h4>\n<ul>\n<li><strong>Step 1:<\/strong> Open &#8220;Local Security Policy&#8221; or &#8220;Group Policy Management Console&#8221; (if using GPO).<\/li>\n<li><strong>Step 2:<\/strong> Navigate to &#8220;Local Policies&#8221; &gt; &#8220;User Rights Assignment.&#8221;<\/li>\n<li><strong>Step 3:<\/strong> Find &#8220;Allow log on through Remote Desktop Services.&#8221;<\/li>\n<li><strong>Step 4:<\/strong> Add users or groups that have the right to log in remotely.<\/li>\n<\/ul>\n<h4>3. <strong>Configure Firewall Security:<\/strong><\/h4>\n<ul>\n<li><strong>Step 1:<\/strong> Open &#8220;Windows VPSDefender Firewall with Advanced Security.&#8221;<\/li>\n<li><strong>Step 2:<\/strong> Create an inbound rule for RDP (default port 3389).<\/li>\n<li><strong>Step 3:<\/strong> In the rule settings, allow only traffic from specific IP addresses.<\/li>\n<\/ul>\n<h4>4. <strong>Configure Login from Specific IP:<\/strong><\/h4>\n<ul>\n<li><strong>Step 1:<\/strong> Open &#8220;Local Security Policy&#8221; or &#8220;Group Policy Management Console.&#8221;<\/li>\n<li><strong>Step 2:<\/strong> Navigate to &#8220;Advanced Security Settings&#8221; &gt; &#8220;IP Security Policies on Local Computer.&#8221;<\/li>\n<li><strong>Step 3:<\/strong> Create a new IP Security Policy allowing only connections from specific IP addresses.<\/li>\n<\/ul>\n<h4>Additional Tips:<\/h4>\n<ul>\n<li><strong>Use Strong Authentication:<\/strong> Consider using multi-factor authentication for added security.<\/li>\n<li><strong>Regularly Update and Patch:<\/strong> Keep your server updated with the latest security patches.<\/li>\n<li><strong>Audit Logins:<\/strong> Enable login auditing to monitor and review login attempts.<\/li>\n<\/ul>\n<p>Always ensure that you follow best security practices and consult with your organization&#8217;s security policies.<\/p>\n<div class=\"post-author-box\" style=\"border-top:1px solid #ddd;margin-top:20px;padding-top:15px;\">\n<p><strong>Author:<\/strong> \u0141ukasz Bodziony<\/p>\n<p><strong>Website:<\/strong> <a href=\"https:\/\/ca.netcloud24.com\" target=\"_blank\" rel=\"dofollow\">Windows VPS<\/a><\/p>\n<p><em>\u0141ukasz Bodziony is the CEO and founder of <a href=\"https:\/\/netcloud24.com\" target=\"_blank\" rel=\"dofollow\">NETCLOUD24<\/a>, a global VPS hosting brand proudly originating from Poland. With extensive experience in cloud computing, virtualization, and server management, he delivers high-performance <strong>Windows VPS<\/strong> and <strong>Remote Desktop Services (RDS)<\/strong> solutions to clients across Europe, North America, and beyond.<\/em><\/p>\n<p><em>His expertise covers a wide range of technologies, including <strong>Microsoft Azure<\/strong>, <strong>Proxmox VE<\/strong>, <strong>Amazon Web Services (AWS)<\/strong>, and numerous other virtualization and cloud platforms.<\/em><\/p>\n<p><em>Beyond running his hosting business, \u0141ukasz also provides <strong>professional paid server configuration and optimization services<\/strong> for companies and individuals. Outside of work, he is dedicated to caring for his children and building a secure future for them.<\/em><\/p>\n<p><em>If you are interested in working with him or need expert assistance with your hosting, cloud environment, or server setup, feel free to reach out via <a href=\"https:\/\/ca.netcloud24.com\" target=\"_blank\" rel=\"dofollow\">Windows VPS<\/a>.<\/em><\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>1. Set Up VPN on the Server: Step 1: Open &#8220;Server Manager.&#8221; Step 2: Select &#8220;Add roles and features.&#8221; Step 3: Follow the wizard to add the &#8220;Remote\u2026<\/p>\n","protected":false},"author":1,"featured_media":3421,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"","_seopress_robots_index":"","footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[],"tags":[14,12,11,23,20,21,22,17,7,8,6,10,18,19,15,24,16,5,13,9],"class_list":["post-1956","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","tag-cheapvps","tag-cloudvps","tag-hostingvps","tag-rds","tag-rdscal","tag-remotedesktop","tag-remotedesktopvps","tag-servervps","tag-ukvps","tag-virtualserver","tag-vpshosting","tag-vpsserver","tag-vpssolutions","tag-vpswindows","tag-vpswithwindows","tag-windowsrds","tag-windowsserver","tag-windowsvps","tag-windowsvpshosting","tag-windowsvpsuk"],"jetpack_publicize_connections":[],"_links":{"self":[{"href":"https:\/\/netcloud24.com\/knowledgebase\/wp-json\/wp\/v2\/posts\/1956","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/netcloud24.com\/knowledgebase\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/netcloud24.com\/knowledgebase\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/netcloud24.com\/knowledgebase\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/netcloud24.com\/knowledgebase\/wp-json\/wp\/v2\/comments?post=1956"}],"version-history":[{"count":0,"href":"https:\/\/netcloud24.com\/knowledgebase\/wp-json\/wp\/v2\/posts\/1956\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/netcloud24.com\/knowledgebase\/wp-json\/wp\/v2\/media\/3421"}],"wp:attachment":[{"href":"https:\/\/netcloud24.com\/knowledgebase\/wp-json\/wp\/v2\/media?parent=1956"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/netcloud24.com\/knowledgebase\/wp-json\/wp\/v2\/categories?post=1956"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/netcloud24.com\/knowledgebase\/wp-json\/wp\/v2\/tags?post=1956"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}