Change Windows VPS RDP Port

4th December, 2013 by

Windows VPS allows a user to remotely control their server using Windows Remote Desktop (RDP). By default the service runs on port 3389. Unfortunately, there are many scripts and bots out on the internet just looking for hosts to attempt brute force attacks on. And guess one of the first places they look? Correct, port 3389.

As such we recommed you change it to make this kind of attack much more difficult to execute.

To change the port follow these steps

  • Start Registry Editor.
  • Locate and then click the following registry subkey:
  • HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\TerminalServer\WinStations\RDP-Tcp\PortNumber
  • On the Edit menu, click Modify, and then click Decimal.
  • Type the new port number, and then click OK.
  • Quit Registry Editor.
  • Make sure you open the port on your firewall.
  • Restart the computer.
  • your done.

If you accidentally lock yourself out you can always access your VPS using the Terminal Server

  • Darren

    The change only goes into effect once the server is restarted. After the restart, the RDP is only accessible via the new port number.

    Mainland China Virtual Private Server Hosting

  • subs

    Changing a port number is weak protection. Not bad advice, but not really effective in protecting you from brute force attacks. Hackers scan for IPs then scan the ports.

Delivery Manager

Daniel has been an evangelist for internet applications and infrastructure for over 15 years. A graduate of the university of Wollongong Computer Science department, he has delivered projects in complex applications ranging from Flight Center's corporate bookings engine to Macquarie Bank's equities trading platform.

When not at ServerMule Daniel can be found with his surfboard under his arm heading to the beach for a surf or encouraging his young son and daughter to get out there amongst the waves.

Read More from