Private RDP

Private RDP access without a public RDP port

Use DevProxy private TCP relay when you need Windows RDP access but do not want to expose port 3389 on the internet. The VPS accepts HTTPS/WebSocket traffic on 443, while authenticated host and connector clients relay RDP bytes privately.

Start free Compare alternatives

Keep public 3389 closed.
Connect mstsc to a local connector port such as 127.0.0.1:3390.
Use WebRTC P2P when possible and relay fallback over 443 when needed.
Grant connector access explicitly per workspace and tunnel.

Recommended command flow

Run a host client on the machine that owns 127.0.0.1:3389. Run a connector client on the viewer machine and point mstsc to the connector local port.

Security boundary

DevProxy does not terminate or inspect RDP. It authenticates host and connector clients, validates grants, then forwards TCP bytes.