Forums
New posts
Articles
Product Reviews
Policies
FAQ
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Menu
Log in
Register
Install the app
Install
Forums
Digital Lifestyle
Internet, Networking, and Wireless
vnc, port forwarding
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="IvanLasston" data-source="post: 1025616" data-attributes="member: 145676"><p>VNC is insecure - and if use it over the internet - you'll want to encrypt it by portforwarding through ssh.</p><p>Setup a dynamic dns - there are a myriad of ways to do this but most routers support dyndns - then you don't have to worry about knowing the ip address.</p><p><a href="http://www.dyndns.com/services/dns/dyndns/" target="_blank">DynDNS.com - Services -- Dynamic DNS Free (DDNS) Service</a></p><p></p><p>Setup SSH on ubuntu - search the web for securing ssh, ssh and iptables, and denyhosts. Also search for rsa public key - and don't allow password login. Do note that once you open port 22 you will get attacked so that is why these precautions are neccesary. </p><p></p><p>Then port forward 22 to your ubuntu </p><p></p><p>You can then ssh tunnel to any port on your internal network. To do vnc the command would look like</p><p>ssh -L 5910:192.168.1.2:5900 <a href="mailto:ivanl@myregistereddomain.dyndns.org">ivanl@myregistereddomain.dyndns.org</a></p><p>Needs to be capital L - otherwise l means login</p><p>5910 is the local port you are forwarding to</p><p>192.168.1.2:5900 - the internal ipaddress and port you are forwarding</p><p>ivanl would be your login to your ubuntu box</p><p>myregistereddomain.dyndns.org is the name you registered with dynamic dns</p><p></p><p>This is just a high level overview but I'd not recommend doing any of this until you fully understand the security risks involved - which are many.</p><p></p><p>Opening and forwarding ports is very dangerous especially known ports like VNC, RDC, SSH, etc as there are script attacks setup for pretty much all known ports. SSH is pretty secure but again - search and understand the ways ssh can be attacked.</p></blockquote><p></p>
[QUOTE="IvanLasston, post: 1025616, member: 145676"] VNC is insecure - and if use it over the internet - you'll want to encrypt it by portforwarding through ssh. Setup a dynamic dns - there are a myriad of ways to do this but most routers support dyndns - then you don't have to worry about knowing the ip address. [url=http://www.dyndns.com/services/dns/dyndns/]DynDNS.com - Services -- Dynamic DNS Free (DDNS) Service[/url] Setup SSH on ubuntu - search the web for securing ssh, ssh and iptables, and denyhosts. Also search for rsa public key - and don't allow password login. Do note that once you open port 22 you will get attacked so that is why these precautions are neccesary. Then port forward 22 to your ubuntu You can then ssh tunnel to any port on your internal network. To do vnc the command would look like ssh -L 5910:192.168.1.2:5900 [email]ivanl@myregistereddomain.dyndns.org[/email] Needs to be capital L - otherwise l means login 5910 is the local port you are forwarding to 192.168.1.2:5900 - the internal ipaddress and port you are forwarding ivanl would be your login to your ubuntu box myregistereddomain.dyndns.org is the name you registered with dynamic dns This is just a high level overview but I'd not recommend doing any of this until you fully understand the security risks involved - which are many. Opening and forwarding ports is very dangerous especially known ports like VNC, RDC, SSH, etc as there are script attacks setup for pretty much all known ports. SSH is pretty secure but again - search and understand the ways ssh can be attacked. [/QUOTE]
Verification
Post reply
Forums
Digital Lifestyle
Internet, Networking, and Wireless
vnc, port forwarding
Top