Re: [opensuse] krdc remote control over internet - which IP?

Wed, 11 Jul 2007, by spleeyah@xxxxxxxxxxxx:

On Mittwoch, 11. Juli 2007, John Andersen wrote:
On Wednesday 11 July 2007, Theo v. Werkhoven wrote:
Your partner needs to get his/her public IP address, e.g. with
http://www.whatismyip.org , and tell you that address (or sign up
with dyndns.com). Then he or she needs to forward port TCP 5900 on
the router to the PC on the inside.

Or you could just look at the email headers to pick up said partners
IP. It will usually be the bottom one in the list of header hops.

But VNC has another option, and that is for the OP to run a listening
viewer, and have the partner connect to said viewer. Its made for
precisely these situations where one end is behind a firewall.

Of course, if both are behind a firewall you have to do the routing
trick.

thanks for the hint, John,

Yes we are both sitting behind firewalls, but I will have to search deeply
in
my head anyway to retrieve the knowledge about how to open and close a
port
in the Suse Firewall. Maybe I'll better google as the web might be better
organized than my brain :-)

Daniel

I think he meant routers. If you are both behind routers, you will each
have to forward port 5900 to the correct internal IP address of your
computer.

That's not correct. The 'client' (viewer) side connects from some
high-port (1024-65525), and does not require a return connection
from the server, so as long as the viewer PC can access high ports
on the Internet, all should work.
Of course, at $DAYJOB, I do /not/ let company PCs have unrestricted
access to high ports on the outside, better safe than sorry with
Windows PCs, dealing with company data and passwords etc...

Theo
--
Theo v. Werkhoven Registered Linux user# 99872 http://counter.li.org
ICBM 52 13 26N , 4 29 47E. + ICQ: 277217131
SUSE 10.2 + Jabber: muadib@xxxxxxxxxxxxxxxx
Kernel 2.6.18 + See headers for PGP/GPG info.
Claimer: any email I receive will become my property. Disclaimers do not apply.
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx

Relevant Pages

  • Re: [fw-wiz] Hacker pierces hardware firewalls with web page.
    ... I've seen several other posts where people make use of browser exploits to trick the browser into submitting a form to the router/firewall, and if the router has the default password, the attacker can then configure the firewall any way they want. ... With FTP the client connect to the server, then at the start of a file transfer the client tells the server what port to connect to on the client. ... virtually any service on their machine, even when it's behind certain routers that automatically block it to the outside world. ...
    (Firewall-Wizards)
  • Re: How to Stealth POP3 Port 110 using NIS2000?
    ... | According to the firewall log, that port is not even being probed. ... coming from your ISP's routers, ... Check out the NIS rules for POP3 and SMTP for your e-mail client software. ... "Unused Port Blocking". ...
    (comp.security.firewalls)
  • Re: [fw-wiz] Hacker pierces hardware firewalls with web page.
    ... the attacker can then configure the ... transfer the client tells the server what port to connect to on the client. ... A 'helpful' firewall will watch for this message and reconfigure itself to ... routers that automatically block it to the outside world. ...
    (Firewall-Wizards)
  • Re: help recovering from hack
    ... What you are experiencing is typical of having a PC on an open Internet ... port. ... there are tools for testing your firewall vulnerability. ... For commercial routers, I have used Linksys, Belkin, and D-Link. ...
    (alt.computer.security)
  • Re: Network from home to office, etc.
    ... I have an 8 port router at the office ... This entails finding out if those routers have static or dynamic IPs. ... I suggest port 3389 for remote desktop to be your easiest solution. ... (Of course, that assumes Windows XP Professional, Windows 2000 Server ...
    (microsoft.public.windowsxp.work_remotely)