What is the RDP Port Number for Windows 10

What is the RDP Port Number for Windows 10? Step-by-Step Guide

/ Knowledgebase, RDP Port 25

What is the RDP Port number for Windows 10? Remote Desktop Protocol (RDP) is a proprietary protocol developed by Microsoft, allowing users to connect remotely to another computer over a network connection. It is widely used in businesses and personal computing environments for remote access, troubleshooting, and administrative purposes. One of the key aspects of setting up and using RDP in Windows 10 is understanding the RDP port number and how it functions.

Understanding the Default RDP Port Number

By default, Windows 10 uses port 3389 for Remote Desktop Protocol (RDP) connections. This port is assigned for RDP communications and must be open and properly configured on both the client and server sides for a successful connection.

Step-by-Step Guide What is the RDP Port Number for Windows 10?

Importance of the RDP Port in Windows 10

The RDP port plays a crucial role in ensuring seamless remote connections. It serves as the gateway through which RDP traffic is transmitted, allowing users to access their systems from remote locations. Any misconfiguration or blocking of this port can lead to connectivity issues, preventing successful remote desktop connections.

Checking the RDP Port in Windows 10

To verify the RDP port settings in Windows 10, follow these steps:

  1. Open the Registry Editor by pressing Win + R, writing regedit, & pressing Enter.
  2. Navigate to the following registry key:
    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp
  3. See for the PortNumber entry on the right-hand side.
  4. The value displayed represents the RDP port number in decimal format.
  5. If needed, you can modify the port number by double-clicking on PortNumber, selecting Decimal, and entering the new port number.

Changing the Default RDP Port in Windows 10

For security reasons, many users prefer changing the default RDP port from 3389 to another number. This helps mitigate unauthorized access and brute-force attacks. To change the RDP port, look these steps:

  1. Open the Registry Editor (regedit).
  2. Navigate to:
    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp
  3. Find the PortNumber entry.
  4. Double-click PortNumber, select Decimal, and enter a new port number (e.g., 3390, 5000, etc.).
  5. Click OK and close the Registry Editor.
  6. Open Windows Firewall and allow the new port through the firewall by creating an inbound rule.
  7. Restart your computer to apply the changes.

Configuring Windows Firewall for RDP Port

After changing the RDP port, you must allow the new port through the Windows Firewall to prevent connectivity issues. Here’s how to do it:

  1. Open Windows Defender Firewall from the Control Panel.
  2. Click on Advanced Settings.
  3. Select Inbound Rules from the left panel.
  4. Click New Rule on the right-hand side.
  5. Select Port and click Next.
  6. Choose TCP and enter the new port number under Specific local ports.
  7. Click Next, select Allow the connection, and proceed.
  8. Apply the rule to Domain, Private, & Public networks.
  9. Name the rule (e.g., “New Remote Desktop Protocol Ports”) & click Finish.
  10. Repeat the process for Outbound Rules to ensure smooth communication.

Ensuring Security for the RDP Port

Since RDP is a common target for cyberattacks, securing it is crucial. Here are some essential security measures:

1. Change the Default Port Number

  • Attackers often scan for port 3389, making it a prime target. Using a custom port can reduce exposure.

2. Enable Network Level Authentication (NLA)

  • Network Level Authentication (NLA) requires authentication before a remote session is established, adding an extra layer of security.
  • To enable NLA:
    1. Open System Properties (sysdm.cpl).
    2. Go to the Remote tab.
    3. Check Permit connections only from computers running Remote Desktop Protocol with Network Level Authentication.
    4. Click OK.

3. Use Strong Passwords and Two-Factor Authentication (2FA)

  • Ensure that the user accounts accessing RDP have strong, complex passwords.
  • If possible, enable two-factor authentication for an added layer of protection.

4. Restrict RDP Access by IP Address

  • Configure Windows Firewall to allow RDP access only from trusted IP addresses.

5. Disable RDP If Not in Use

  • If RDP is not required, disable it to prevent unauthorized access.
  • To disable RDP:
    1. Open System Properties (sysdm.cpl).
    2. Go to the Remote tab.
    3. Select Don’t allow remote connections to this computer.
    4. Click OK.

6. Use Remote Desktop Gateway

  • Instead of exposing RDP to the internet, use a Remote Desktop Gateway (RD Gateway) to securely tunnel RDP sessions over HTTPS.

7. Keep Windows Updated

  • Regularly install Windows updates to patch vulnerabilities and improve security.

Common Issues with RDP Port in Windows 10

1. Unable to Connect to RDP

  • Ensure the RDP service is running.
  • Verify the port is not blocked by the firewall.
  • Confirm the correct IP address or hostname is being used.

2. Port Conflict with Another Application

  • If another application is using port 3389, change the RDP port and restart the system.

3. ISP or Network Blocking the Port

  • Some ISPs block port 3389 for security reasons. Use a VPN or change the port.

Conclusion

The default RDP port number for Windows 10 is 3389, but for security reasons, it can be modified. Understanding how to check, change, and secure the RDP port is essential for maintaining a safe and efficient remote desktop environment. By implementing security measures such as changing the default port, enabling NLA, and restricting access, users can protect their systems from potential threats. Keeping Windows updated and using a Remote Desktop Gateway can further enhance security and ensure smooth remote connections.

Related Posts

Scroll to Top