Hello, Huawei B525s-23a router I need to share a remote desktop outside ddns connected - connected port on a fixed ip assigned to the card opened 3389 I can not remotely connect in what the problem may be greetings

In ordinary internet access services in 3G / LTE technology, operators do not provide public IP. You need to purchase an additional fixed or variable IP service from the operator.

I have DDNS plugged in, I can ping, I can log in to the router by domain.

So what if you do not have public IP has WAN? Well, some operators even give public IP to users but are blocked on the firewall of the provider.

And what does this have to do with external access to your router? By default, despite the public IP, the operator blocks traffic coming from outside. You're wrong, DDNS is for something else.

On the D-LINK DWR-921 everything works, a remote desktop works. The basic question is whether the Huawei B525s-23a to be configured for such a service?

What kind of operator do you have public, dynamic IP with external access?

t-mobile - works on ddns orange - I have fixed ip Everything works on d-link hardware

What they write above is crap If you connect to the router's web interface from outside, you have public ip and the problem lies in the router in port forwarding. To get from the outside to the desktop (I assume the RDP protocol) you have to forward port 3390 to the terminal to which you want to connect at home. Here it is explained which port to which:

All the time we do not know if the author of the topic correctly configured the new router and whether the IP address is public without blocking. Unfortunately, we have little information until now. We rely on what the story's author says, so ask for some culture.

My topic appeared because the service itself configured this d-link, but now I wanted to do it on huawei and I have a problem. I do not penetrate what is called at the supplier because it can be a separate topic, I am specifically interested in the correct configuration of huawei.

Configuration of Huawei B525s-23a Router: Remote Desktop & DDNS Connection, Port 3389 Issues

michalsokol 23079 18

Best answers

How can I configure a Huawei B525s-23a router to access Remote Desktop from outside using DDNS and port 3389, and why does it still not work?

You need a public WAN IP and correct port forwarding on the Huawei; DDNS only points to your current IP, it does not provide external access by itself [#16779438][#16781566] If you can reach the router’s web interface from outside, the public IP side is probably OK and the problem is in the router’s port forwarding or in the target PC configuration [#16780518] For Remote Desktop, the port must be forwarded to the computer you want to reach, not just opened on the router, and the service must be allowed on the system side [#16780518][#16811031] If the port checker shows 3389 open but RDP still fails, check the Windows/system firewall and make sure the desktop is enabled and listening locally [#16810533][#16811112][#16811133] On mobile operators, APN/public IP settings can also matter, because many LTE/3G plans do not give a usable public IP unless you have the right service enabled [#16779438][#16783330]

Generated by the language model.

Treść została przetłumaczona

Zobacz oryginalną wersję tematu

Report a violation of the law

Reply | New topic

#1 16779432 25 Oct 2017 21:15

michalsokol michalsokol

Level 12

Posts: 112

Rate: 18
» | Topic author

Post #1
16779432 25 Oct 2017 21:15

Hello,

Huawei B525s-23a router

I need to share a remote desktop "outside"

ddns connected - connected
port on a fixed ip assigned to the card opened 3389

I can not remotely connect in what the problem may be

greetings

ADVERTISEMENT
#2 16779438 25 Oct 2017 21:17

jimasek jimasek

VIP Meritorious for electroda.pl

Posts: 35287

Help: 3783

Rate: 2671
» | Helpful post? (0)

Post #2
16779438 25 Oct 2017 21:17

In ordinary internet access services in 3G / LTE technology, operators do not provide public IP. You need to purchase an additional fixed or variable IP service from the operator.
#3 16779448 25 Oct 2017 21:21

michalsokol michalsokol

Level 12

Posts: 112

Rate: 18
» | Topic author Helpful post? (+2)

Post #3
16779448 25 Oct 2017 21:21

I have DDNS plugged in, I can ping, I can log in to the router by domain.
#4 16779455 25 Oct 2017 21:24

jimasek jimasek

VIP Meritorious for electroda.pl

Posts: 35287

Help: 3783

Rate: 2671
» | Helpful post? (0)

Post #4
16779455 25 Oct 2017 21:24

So what if you do not have public IP has WAN? Well, some operators even give public IP to users but are blocked on the firewall of the provider.
ADVERTISEMENT
#5 16779458 25 Oct 2017 21:24

matek451 matek451

Level 43

Posts: 31046

Help: 4313

Rate: 5707
» | Helpful post? (+1)

Post #5
16779458 25 Oct 2017 21:24

And what does this have to do with external access to your router? By default, despite the public IP, the operator blocks traffic coming from outside. You're wrong, DDNS is for something else.

Helpful post? Buy me a coffee.
#6 16779473 25 Oct 2017 21:28

michalsokol michalsokol

Level 12

Posts: 112

Rate: 18
» | Topic author Helpful post? (0)

Post #6
16779473 25 Oct 2017 21:28

On the D-LINK DWR-921 everything works, a remote desktop works.

The basic question is whether the Huawei B525s-23a to be configured for such a service?
#7 16779502 25 Oct 2017 21:38

matek451 matek451

Level 43

Posts: 31046

Help: 4313

Rate: 5707
» | Helpful post? (+1)

Post #7
16779502 25 Oct 2017 21:38

What kind of operator do you have public, dynamic IP with external access?

Helpful post? Buy me a coffee.
ADVERTISEMENT
#8 16779532 25 Oct 2017 21:45

michalsokol michalsokol

Level 12

Posts: 112

Rate: 18
» | Topic author Helpful post? (+1)

Post #8
16779532 25 Oct 2017 21:45

t-mobile - works on ddns
orange - I have fixed ip

Everything works on d-link hardware
#9 16780518 26 Oct 2017 12:26

pajew pajew

Level 11

Posts: 7
» | Helpful post? (0)

Post #9
16780518 26 Oct 2017 12:26

What they write above is crap If you connect to the router's web interface from outside, you have public ip and the problem lies in the router in port forwarding. To get from the outside to the desktop (I assume the RDP protocol) you have to forward port 3390 to the terminal to which you want to connect at home. Here it is explained which port to which: http://www.webune.com/forums/what-port-does-rdp-uses-remote-desktop-protocol.html
#10 16780850 26 Oct 2017 15:30

jimasek jimasek

VIP Meritorious for electroda.pl

Posts: 35287

Help: 3783

Rate: 2671
» | Helpful post? (+1)

Post #10
16780850 26 Oct 2017 15:30

All the time we do not know if the author of the topic correctly configured the new router and whether the IP address is public without blocking. Unfortunately, we have little information until now.

pajew wrote:
What they write above is crap

We rely on what the story's author says, so ask for some culture.
ADVERTISEMENT
#11 16781531 26 Oct 2017 20:59

michalsokol michalsokol

Level 12

Posts: 112

Rate: 18
» | Topic author Helpful post? (+1)

Post #11
16781531 26 Oct 2017 20:59

My topic appeared because the service itself configured this d-link, but now I wanted to do it on huawei and I have a problem. I do not penetrate what is called at the supplier because it can be a separate topic, I am specifically interested in the correct configuration of huawei.
#12 16781566 26 Oct 2017 21:13

jimasek jimasek

VIP Meritorious for electroda.pl

Posts: 35287

Help: 3783

Rate: 2671
» | Helpful post? (+1)

Post #12
16781566 26 Oct 2017 21:13

michalsokol wrote:
I do not penetrate what is called at the supplier because it can be a separate topic, I am specifically interested in the correct configuration of huawei.

And this may turn out to be very important because without public IP on the WAN, you will not correctly configure access from the outside. Your redirection though well configured will not work.
#13 16783320 27 Oct 2017 19:59

michalsokol michalsokol

Level 12

Posts: 112

Rate: 18
» | Topic author Helpful post? (0)

Post #13
16783320 27 Oct 2017 19:59

I wrote that the remote desktop works on the d-link, now the same card wants to run on huawei. Since the remote works on the d-link, I assume that everything is ok with the operator.
#14 16783330 27 Oct 2017 20:04

jimasek jimasek

VIP Meritorious for electroda.pl

Posts: 35287

Help: 3783

Rate: 2671
» | Helpful post? (0)

Post #14
16783330 27 Oct 2017 20:04

Well, the apn configuration issue? Usually, this affects the availability of public IP and GSM providers.
#15 16810533 08 Nov 2017 21:34

michalsokol michalsokol

Level 12

Posts: 112

Rate: 18
» | Topic author Helpful post? (0)

Post #15
16810533 08 Nov 2017 21:34

Hello after a short break,

IP fixed APN date

by checking the website: https://www.yougetsignal.com/tools/open-ports/ port 3389 opened

However, the remote desktop does not work. What now? any ideas?
#16 16811031 09 Nov 2017 08:03

jimasek jimasek

VIP Meritorious for electroda.pl

Posts: 35287

Help: 3783

Rate: 2671
» | Helpful post? (0)

Post #16
16811031 09 Nov 2017 08:03

Then search for a problem in the system - firewall or anti-virus.
#17 16811112 09 Nov 2017 09:15

michalsokol michalsokol

Level 12

Posts: 112

Rate: 18
» | Topic author Helpful post? (0)

Post #17
16811112 09 Nov 2017 09:15

A clean system without any firewall or anti-virus program. The remote desktop works locally.
#18 16811133 09 Nov 2017 09:30

jimasek jimasek

VIP Meritorious for electroda.pl

Posts: 35287

Help: 3783

Rate: 2671
» | Helpful post? (0)

Post #18
16811133 09 Nov 2017 09:30

A system firewall?
#19 16811168 09 Nov 2017 09:55

michalsokol michalsokol

Level 12

Posts: 112

Rate: 18
» | Topic author Helpful post? (0)

Post #19
16811168 09 Nov 2017 09:55

Off, everything in red
Create an account, log in here. You will receive points by participating in discussions.
Join this discussion.

Install Elektroda application

Didn't find an answer? Ask Artificial Intelligence

*I agree to send the question to OpenAI, Anthropic PBC, Perplexity AI, Inc., Kagi Inc., Google LLC - owners of language models in order to prepare the best response. The companies may monitor and log information entered into the form.

*I agree to publicly display my question and answer. The question and answer will be publicly available to everyone. The process may take a few minutes. Upon completion, you will be redirected to the page with the answer.

Wait...(2min)

Reply | New topic

Report a violation of the law

Topic summary

✨ The discussion revolves around configuring the Huawei B525s-23a router for remote desktop access using DDNS and addressing issues with port 3389. The user reports successful remote desktop functionality on a D-Link DWR-921 but encounters problems with the Huawei router. Responses highlight the necessity of a public IP for external access, with suggestions to check port forwarding settings and potential firewall issues. The user confirms that port 3389 is open but still cannot connect remotely, indicating that the problem may lie within the router's configuration or the service provider's settings.
Generated by the language model.

FAQ

TL;DR: RDP “uses TCP port 3389 by default,” so fix Huawei B525s‑23a remote access by ensuring public IP/APN, enabling WAN access, and forwarding that port. [Microsoft, 2023]

Why it matters: This FAQ helps owners who ask “how do I fix B525 remote desktop and DDNS problems?” by turning forum wisdom into a working checklist, fast.

Quick Facts

RDP’s default port is TCP 3389; the client and router rules must match. [Microsoft, 2023]
DDNS only maps a changing IP to a hostname; it doesn’t open inbound paths. [Elektroda, matek451, post #16779458]
LTE/3G plans often sit behind CGNAT; you need a public IP on WAN or special APN. [Elektroda, jimasek, post #16779438]
Some ISPs grant public IP yet still block inbound traffic at their firewall. [Elektroda, jimasek, post #16779455]
The OP confirmed D-Link DWR‑921 worked while B525 needed APN/forwarding review. [Elektroda, michalsokol, post #16783320]

Does the Huawei B525s‑23a support Remote Desktop from the internet?

Yes. It can expose services if the WAN has a public IP and you configure port forwarding. Without public IP on WAN, external access will not work even when forwarding is correct. Confirm your subscription or APN provides a public, reachable address first. [Elektroda, jimasek, post #16781566]

Why doesn’t DDNS alone make RDP reachable?

DDNS only gives you a stable name for a changing IP. It does not bypass carrier NAT or ISP firewalls and does not replace port forwarding. As one expert put it, “DDNS is for something else.” Set DDNS plus public IP plus forwarding to succeed. [Elektroda, matek451, post #16779458]

How do I know if my LTE connection has a public IP?

Ask your operator or use the correct APN that enables public addressing. Many consumer LTE plans place users behind CGNAT, blocking unsolicited inbound connections. If your plan lacks public IP, buy an add‑on or business APN with public reachability. [Elektroda, jimasek, post #16779438]

My D‑Link worked but B525 doesn’t—what changed?

Likely APN or forwarding differences. The working D‑Link indicates the ISP side can allow access, but the B525 may be using a different APN or missing equivalent NAT/port rules. Align APN and forwarding to match the D‑Link setup. [Elektroda, jimasek, post #16783330]

How do I forward RDP on the Huawei B525s‑23a (3 steps)?

In the B525 admin, create a NAT/Port Forward rule to your PC’s LAN IP.
Set external TCP port to your chosen RDP port and internal TCP port to the PC’s RDP port.
Save, then test from outside your network using mobile data. [Elektroda, pajew, post #16780518]

Which port should I forward for Windows Remote Desktop?

Forward the port your PC listens on. By default, RDP listens on TCP 3389. You can change it on Windows and then forward the new port on the router. Ensure client, router, and host all match the same port. [Microsoft, 2023]

A port‑checker shows 3389 open, but RDP still fails—why?

The Windows host can still block RDP. Check that RDP is enabled and allowed in the system firewall. Even on a clean install, local policies or profiles can restrict RDP. “Then search for a problem in the system – firewall.” [Elektroda, jimasek, post #16811031]

Could my ISP be blocking inbound traffic even with a public IP?

Yes. Some providers assign a public IP but filter inbound ports on their edge firewall. Ask for inbound access, a different APN, or a static public IP tier that permits unsolicited connections. This edge case appears in the thread. [Elektroda, jimasek, post #16779455]

What is DDNS in simple terms?

Dynamic DNS maps your changing WAN IP to a fixed hostname. It helps you reach your network by name, but it does not open ports or bypass ISP restrictions. Use DDNS with proper port forwarding and public IP. [Elektroda, matek451, post #16779458]

What is CGNAT and why does it break RDP?

Carrier‑Grade NAT puts many customers behind one address. Inbound connections cannot reach your router because the carrier’s NAT blocks unsolicited traffic. You need a plan/APN that gives your router a public IP on WAN. [Elektroda, jimasek, post #16779438]

How do I verify my port from the outside correctly?

Test from an external network, not from inside your LAN. Use a tool like an online port checker and confirm it sees your DDNS name resolving, then probe the chosen TCP port. The OP used such a test for 3389. [Elektroda, michalsokol, post #16810533]

Why did local RDP work but remote RDP failed in the thread?

Local RDP bypasses ISP and WAN rules. Remote RDP depends on public IP availability, router forwarding, and host firewall. The OP confirmed local success but remote failure due to upstream or configuration gaps. [Elektroda, michalsokol, post #16811112]

Should I change the RDP port from 3389 for security?

Changing the listening port reduces automated scans but does not replace authentication and patching. If you change it, match the new port in Windows and in the B525 forwarding rule before testing from outside. [Elektroda, pajew, post #16780518]

What if everything looks right and it still won’t connect?

Re‑check that the APN truly delivers public IP, confirm the ISP doesn’t filter inbound, and retest with a different port. If the ISP filters, request an unblocked profile or static IP option from support. [Elektroda, jimasek, post #16781566]