How to block Filetransfer through RDP (Port 3389)?

file-transfer firewall rdp

For security reasons I have to restrict/disable file transfer via RDP (port 3389) from and to Remote Machines (Windows 10). Is the file transfer tunneled through port 3389, or can I safely prevent a file transfer by blocking port 139/445 SMB? A GPO would be too uncertain for me at this point.


I assume you are asking how to block copy/paste files from local PC to remote desktop (Windows 10) through RDP window directly. If yes, please config the group policy in remote desktop server (Windows 10).

  1. Launch "gpedit.msc", the Local Group Policy Editor will open.
  2. Navigate to "Computer Configuration" > "Administrative Templates" > "Windows Components" > "Remote Desktop Services" > "Remote Desktop Session Host" > "Device and Resource Redirection".
  3. Set "Do not allow Clipboard redirection" to "Enabled", Set "Do not allow drive redirection" to "Enabled".

If you also want to block SMB share file transfer, block client access these ports of server (Windows 10).

  • UDP 137
  • UDP 138
  • TCP 139
  • TCP 445

Related

Directory listing isn't working on nginx showing 404 error
AWS EC2 instance behind AWS ELB cannot get the real client's IP address
exactly 90 seconds to restart apache httpd
NGINX / Cloudflare random 520 HTTP errors when HTTP2 is enabled within NGINX
GCP Load Balancer - Instance Failing - Debug?
How to bring up last terminal window with a shortcut key?
org.freedesktop.PolicyKit1 was not provided by any .service files
How to change value of /proc/sys/fs/inotify/max_user_watches
Spotify has stopped working on the latest Ubuntu today, 15.04 [closed]
How to combine the output of multiple `find` commands?
"syntax error near unexpected token" after editing .bashrc
What does ${_[0]} mean in bash?