Recently I needed to configure a solution for remote desktop on a Linux server. I decided to give XRDP a shot which uses TigerVNC Server by forwarding the standard RDP port of 3389 to a port VNC is listening on. The end result is to set up a SSH tunnel that forwards local port 3389 over SSH to XDRP which is listening only on the remote localhost on port 3389 as well. Use the information below to set this up on CentOS Linux though the instructions will be similar for other Linux distros as well.
Earlier when configuring XRDP I could not find out how to make XRDP only listen to 127.0.0.1 or localhost. Finally after playing around with multiple variables I thought it might be I picked the right one. Below is an example of my xrdp.ini before modifying the listen address and after modifying the listen address.
When configuring NGINX with SSL the configuration stated you could have the listen parameter followed by IP:PORT. Initially I attempted to put the below.