It’s convenient to use the Remote Desktop Protocol (RDP) for accessing systems over the Internet, especially in server environments. However, exposing RDP to direct connections is risky. This setup not only gives remote attackers the opportunity to guess logon credentials, but also relies on the.
Microsoft today released its Microsoft Remote Desktop client for Windows 10 out of preview. You can download the new Remote Desktop app now from the Windows Store.
Until now, Windows 10 users interested in Remote Desktop were stuck with the Windows Phone 8.1 app, released in March 2015. The new Universal Windows Platform (UWP) was available for the past few months, but only as a preview.
Now, the Universal app will replace the 8.1 version for both Windows 10 and Windows 10 Mobile. If you’re using an older version of Windows, you won’t be able to use this latest Remote Desktop release, which works on Windows 10 desktops, tablets, phones, and even through Continuum for Windows 10 Mobile.
This is a gradual rollout. The Windows 10 version will be made available “to an increasing number of users over the next couple of weeks.” After upgrading, your desktop connections, usernames, gateways, and general settings will be preserved. You’ll have to re-enter your passwords, and while remote resources are preserved from Windows Phone 8.1, they won’ t be from Windows 8.1.
Also keep in mind that not all features have been ported over. Here’s a list of features that Microsoft still needs to add:
- Multiple simultaneous connections
- Dynamic resolution and rotation
- Printer redirection
- Smartcard redirection
- Microphone support
- Localized app (currently English only)
If you need any of these features, Microsoft recommends that you use the Remote Desktop Connections app that ships with Windows. The company promises that a new set of features is already in the works and that it will “continue monitoring the Store comments and our feature requests site” for the next set.
Keep in mind that the preview version is still available in the Windows Store. Unlike the new app, which has a slower update cadence and minimized risks, this one is for those who want to use pre-release software to try new features and provide feedback.
Best of all, both the stable and preview apps can be installed side-by-side. And for those who don’t have Windows 10 or Windows 10 Mobile, Remote Desktop is also available for:
Windows 8.1, Mac OS X, Android, iOS, and Windows Phone 8.1.
-->Applies to: Windows 10, Windows Server 2016
When you connect to your PC by using a Remote Desktop client, you're creating a peer-to-peer connection. This means you need direct access to the PC (sometimes called 'the host'). If you need to connect to your PC from outside of the network your PC is running on, you need to enable that access. You have a couple of options: use port forwarding or set up a VPN.
Enable port forwarding on your router
Port forwarding simply maps the port on your router's IP address (your public IP) to the port and IP address of the PC you want to access.
Specific steps for enabling port forwarding depend on the router you're using, so you'll need to search online for your router's instructions. For a general discussion of the steps, check out wikiHow to Set Up Port Forwarding on a Router.
Before you map the port you'll need the following:
PC internal IP address: Look in Settings > Network & Internet > Status > View your network properties. Find the network configuration with an 'Operational' status and then get the IPv4 address.
Your public IP address (the router's IP). There are many ways to find this - you can search (in Bing or Google) for 'my IP' or view the Wi-Fi network properties (for Windows 10).
Port number being mapped. In most cases this is 3389 - that's the default port used by Remote Desktop connections.
Admin access to your router.
Warning
You're opening your PC up to the internet - make sure you have a strong password set for your PC.
![Windows 10 Remote Desktop Over Internet Windows 10 Remote Desktop Over Internet](https://cloudblogs.microsoft.com/uploads/prod/sites/26/2018/10/Discrete-Device-Assignment-in-RDS-2016.png)
After you map the port, you'll be able to connect to your host PC from outside the local network by connecting to the public IP address of your router (the second bullet above).
The router's IP address can change - your internet service provider (ISP) can assign you a new IP at any time. To avoid running into this issue, consider using Dynamic DNS - this lets you connect to the PC using an easy to remember domain name, instead of the IP address. Your router automatically updates the DDNS service with your new IP address, should it change.
With most routers you can define which source IP or source network can use port mapping. So, if you know you're only going to connect from work, you can add the IP address for your work network - that lets you avoid opening the port to the entire public internet. If the host you're using to connect uses dynamic IP address, set the source restriction to allow access from the whole range of that particular ISP.
You might also consider setting up a static IP address on your PC so the internal IP address doesn't change. If you do that, then the router's port forwarding will always point to the correct IP address.
![Windows 10 remote desktop over internet control Windows 10 remote desktop over internet control](https://www.windowscentral.com/sites/wpcentral.com/files/styles/xlarge/public/field/image/2016/12/remote-desktop-firewall-settings.jpg?itok=lRx4UfZw)
Use a VPN
If you connect to your local area network by using a virtual private network (VPN), you don't have to open your PC to the public internet. Instead, when you connect to the VPN, your RD client acts like it's part of the same network and be able to access your PC. There are a number of VPN services available - you can find and use whichever works best for you.