Allow Remote Desktop connections from outside your home network

Ever wanted to access your home computer when you're away from home? If you have a home network, you can use Remote Desktop Connection to access your home PCs from outside the network. This can be handy when you're traveling or at work.

Note

There are six steps you'll need to follow to set this up. Each one is explained in detail below.

  1. Allow remote connections to the computer you want to access.

  2. Make sure Remote Desktop is able to communicate through your firewall.

  3. Find the IP address of the computer on your home network that you want to connect to.

  4. Open your router's configuration screen and forward TCP port 3389 to the destination computer's IP address.

  5. Find your router's public IP address so that Remote Desktop can find it on the Internet.

  6. Open Remote Desktop Connection and connect.

Allow remote connections to the computer you want to access

To access one computer from another computer, you first need to allow remote connections on the computer you want to access, which must be running one of the following versions of Windows:

  • Windows XP Professional edition

  • Windows Vista Business, Ultimate, or Enterprise edition

  • Windows 7 Professional, Ultimate, or Enterprise edition

On the computer you want to access, follow these steps:

  1. Para abrir Sistema, haga clic en el botón InicioImagen del botón Inicio, haga clic con el botón secundario en Equipo y, a continuación, haga clic en Propiedades.

  2. In the left pane, click Remote settings. Se requiere permiso de administrador Si se le solicita una contraseña de administrador o una confirmación, escriba la contraseña o proporcione la confirmación.

  3. Under Remote Desktop, select one of the options to allow connections. For more information about these options, see ¿Qué tipos de Conexión a Escritorio remoto debería permitir?

  4. Click Select Users.

  5. In the Remote Desktop Users dialog box, click Add.

  6. In the Select Users or Groups dialog box, do one or more of the following:

    • To specify the search location, click Locations.

    • To specify the types of objects (user names) that you want to search for, click Object Types.

    • In the Enter the object names to select box, type the user name that you want to search for, and then click Check Names. If the user name isn't found, click Advanced to run an advanced search.

  7. When you find the correct name, click OK.

    The name will be displayed in the list of users in the Remote Desktop Users dialog box.

  8. Click OK, and then click OK again.

Make sure Remote Desktop is able to communicate through your firewall

If you're using Windows Firewall, follow these steps:

  1. Click the Start button Picture of the Start button, click Control Panel, type "firewall" in the search box, and then click Windows Firewall.
  2. Click Allow a program or feature through Windows Firewall.

  3. Under Allowed programs and features, scroll down to Remote Desktop and make sure its check box is selected.

  4. Under Home/Work (Private), make sure the check box next to Remote Desktop is selected.

If you're using a non-Microsoft firewall, refer to the instructions that came with your firewall.

Find the IP address of the computer on your home network

Next, determine the IP address of the destination computer—the one you want to connect to.

  1. Click the Start button Picture of the Start button, click Control Panel, type "network" in the search box, and then click Network and Sharing Center.
  2. Next to Connections, click the link for your current network connection (either Wireless Network Connection or Local Area Connection).

  3. Click Details.

  4. Write down the IP address listed next to IPv4 Address. You'll need this address when you turn on port forwarding.

Forward TCP port 3389 to the destination computer's IP address

To allow remote connections from outside of your home network, you need to set up your router to forward remote access requests to the computer that you want to connect to.

  1. On any home network computer that's connected to the Internet, open a web browser and type the internal IP address of your router. This address will usually be 192.168.1.1, 192.168.0.1, or 192.168.2.1. Refer to the instructions that came with your router if you need more information about accessing the router's configuration screen.

  2. Type the router administrator user name and password.

  3. In the router's configuration screen, look for a place to turn on port forwarding (also called port mapping).

  4. Forward TCP port 3389, the default port for Remote Desktop Connection, to the IP address of the home computer you want to access from outside the network.

To access more than one of your home computers from outside the network, you can forward an additional TCP port to each additional computer. For example, you can forward TCP port 3390 to a second computer, TCP port 3391 to a third computer, and so on. Then change the listening port, the port that Remote Desktop listens to for incoming network traffic that matches that port, on each computer to match the number you assigned. When you use Remote Desktop Connection to connect to these computers, type the IP address of the router, followed by a colon and the port number (for example, 208.147.66.254:3390).

Changing the listening port is also helpful as a security measure, since a malicious user might first try port 3389, the default for Remote Desktop Connection. By changing the listening port, the malicious user has to guess which port you've chosen. For information about changing the listening port, see How to change the listening port for Remote Desktop on the Microsoft website.

Find your router's public IP address

While you're still at home and connected to your home network, open a web browser and search for "find IP address" to find a service that will report your router's public IP address. Unfortunately, some computers are given a different IP address each time they connect to the Internet. An Internet service provider (ISP) can use a few IP addresses to serve many customers that way, but it means that your computer's address on the Internet is always changing.

To get around the problem of a frequently changing IP address, try a DNS dynamic update service, which allows you to assign a URL to your router that you can use instead of an IP address. The URL stays the same no matter how often the IP address changes. To find a service, search for "DNS dynamic update" on the Internet.

Open Remote Desktop Connection and connect

Now you're ready to actually make the connection. Follow these steps on a computer outside of your network:

  1. Click the Start button Picture of the Start button, type "remote" in the search box, and then click Remote Desktop Connection.
  2. Type the router's public IP address in the Computer field (followed by a colon and the new port number, if you've changed the listening port; for example, 208.147.66.254:3390).

  3. Log on to the remote computer as you normally do.