jbfriedrich/enable_whitelisted_rdp.ps1

## enable_whitelisted_rdp.ps1
# Set execution policy
# AllSigned    : Every script must bear a valid signature
# RemoteSigned : Must be signed by a trusted publisher (for example Microsoft)
# Unrestricted : No restrictions whatsoever, every script can run
Set-ExecutionPolicy -ExecutionPolicy RemoteSigned

# Whitelisted IPs which are allowed to use the services on this host
$whitelistIPs = "8.8.8.8", "127.0.0.1"

# DisplayNames for the firewall rules for Remote Desktop
$remoteDeskopFwRules = "Remote Desktop - User Mode (TCP-In)", "Remote Desktop - User Mode (UDP-In)"

foreach ($rule in $remoteDeskopFwRules) {
	# This will only configure and enable the Firewall ports. The service needs to be (re-)started separately!
    Set-NetFireWallRule -DisplayName $rule -Enabled True -Direction Inbound -RemoteAddress $whitelistIPs
}
	# Set execution policy
	# AllSigned : Every script must bear a valid signature
	# RemoteSigned : Must be signed by a trusted publisher (for example Microsoft)
	# Unrestricted : No restrictions whatsoever, every script can run
	Set-ExecutionPolicy -ExecutionPolicy RemoteSigned

	# Whitelisted IPs which are allowed to use the services on this host
	$whitelistIPs = "8.8.8.8", "127.0.0.1"

	# DisplayNames for the firewall rules for Remote Desktop
	$remoteDeskopFwRules = "Remote Desktop - User Mode (TCP-In)", "Remote Desktop - User Mode (UDP-In)"

	foreach ($rule in $remoteDeskopFwRules) {
	# This will only configure and enable the Firewall ports. The service needs to be (re-)started separately!
	Set-NetFireWallRule -DisplayName $rule -Enabled True -Direction Inbound -RemoteAddress $whitelistIPs
	}