Home / server / Questions / 354809
Accepted
pauska
Asked: 2012-01-30 11:32:26 +0800 CST

RDP Client address is unknown when connecting through a gateway

  • 772

I've come across a showstopper in my magnificent task to create a printer GPO which maps printers inside the TS session based on the RDP client address - the address isn't known when using a gateway server :(

Right-click + status on a session via RD gateway:

enter image description here

Same thing on a session NOT going through RD gateway:

enter image description here

Does anyone know if this is possible to get around? Are there perhaps some kind of undocumented registry change I can do on the gateway server to pass this information along?

remote-desktop-services

4 Answers

  1. Best Answer

    Looks like this isn't possible. I'm going to file a feature request with Microsoft.

    • 2

  2. Since the TS gateway is effectively a proxy, why don't you query the proxy's logs? Filtering for the last event 303 from Remote Desktop Gateway by the user in question should supply you with the IP. I am not aware of any "X-Forwarded-For"-style header in RDP.

    • 1
    • 0

  4. Perhaps you could create a logon script that maps the printer based on the RDP connection? First create an "iplist.txt" file that contains the ip addresses and departments that you want to map the printer for: 

    192.168.0.173,Marketing
192.168.1.173,Sales
192.168.2.173,Finance

    Place the iplist.txt file in a directory that the person logging on will have read access to. From there you can use this batch file to map the printer:

    @echo off

netstat -na | find "3389" | find "ESTABLISHED" > logfile.txt

for /f "tokens=1,2 delims=," %%a in (iplist.txt) do (

    for /f %%i in ('findstr %%a logfile.txt') do (
        set ip_addr=%%a
    )

    if "%ip_addr%" == "%%a" (
        if "%%b" == "Marketing" (
            rundll32 printui.dll,PrintUIEntry /in /q /n \\print_server\marketing_ptr
            REM Set as default:
            rundll32 printui.dll,PrintUIEntry /y /q /n
            goto :end )
        if "%%b" == "Sales" (
            rundll32 printui.dll,PrintUIEntry /in /q /n \\print_server\sales_ptr
            REM Set as default:
            rundll32 printui.dll,PrintUIEntry /y /q /n
            goto :end ) 
        if "%%b" == "Finance" (
            rundll32 printui.dll,PrintUIEntry /in /q /n \\print_server\finance_ptr
            REM Set as default:
            rundll32 printui.dll,PrintUIEntry /y /q /n
            goto :end ) )
)

:end 

del logfile.txt

    You also want to make sure that logfile.txt gets written to a location that the user logging on will have write access to.

    It may not be the reg hack your looking for, but it could work as an alternative....

    • 0