Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: VNC over SSH on a reversible tunnel
Top Forums UNIX for Advanced & Expert Users VNC over SSH on a reversible tunnel Post 302591452 by chebarbudo on Thursday 19th of January 2012 01:35:29 PM
Old 01-19-2012
Hi Corona688,

And thanks so much for the idea. It sounds fantastic!
I'm now thinking of using this idea on a standard basis with all my clients.
I tried to get started with VPN in general.
And if I understand well, I can create sort of a global private network among all my customer's offices and mine. All controled by a VPN server that I'll choose to host public rather than behind my box.

Image

I got a few questions if you don't mind:

The public VPN server.
  • I will host it on a dedicated server at OVH.
  • It will have a public IP address (say 83.84.85.86).
  • Does it need to have a second NIC for the VPN address or is it just a setting in the service configuration.
  • Can I set it to route all traffic between my office and my customers and to route all traffic between my customers and me but not between my custmers?

All the network boxes.
  • If I understand well, there's nothing I need to configure given that the connection will be outgoing (from each network server to the VPN server). Is that correct?

All the network Debian servers.
  • I will install OpenVPN and set it to connect to the VPN server (83.84.85.86). That's it?
  • They usually just have one NIC. Do I just need to set them with a VPN compatible IP address?
  • At that point, will my Debian server be able to SSH connect to any client Debian server ?

All the network workstations.
  • I'd like to not set anything there. Just DHCP.
  • If I tell them the gateway is their local Debian server. And then if I tell the server to route requests through the VPN.
  • Will all the workstation look like they are in the same network?

This project seems very exciting!
I can't wait for another hint!
I know it's a lot of questions to ask so don't feel pressured and just answer whatever you have time for.

Thank you SOO much for your brilliant idea.

Santiago
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

vnc over an ssh tunnel Linux to Linux to Windows

I *think* what I want to do is not only possible but easy, but as a "dummy" :) I can't figure it out. Here's what I have: Linux (Ubuntu 10.04) laptop that is not in my house, but has an Internet connection. Linux (Ubuntu 9.04) computer in my house that has unfettered access to the... (6 Replies)
Discussion started by: WesleyC
6 Replies

2. UNIX for Advanced & Expert Users

ssh decipher a tunnel

Two question here, but it's only one on the protocol point of view. If two persons use the same key to connect to a SSH server is there a risk they can decipher the other tunnel. In other terms is that less safe than if they have two separate keys. Same question if two persons use the same user... (2 Replies)
Discussion started by: moi
2 Replies

3. UNIX for Advanced & Expert Users

Stopping SSH tunnel

I have initiated a tunnel for vncserver. now i want to stop it. is there any way except sleep option? (2 Replies)
Discussion started by: majid.merkava
2 Replies

4. Cybersecurity

RDP over SSH Tunnel

Hi all, I'm trying have an alternative way of connecting into a Corporate network. Mostly in case the VPN down as I cannot also change the security policy. I want to expose windows RDP over ssh tunnel. I have 3 hosts in my scenario 1- Host a : Windows 2k8 has no internet access just only an... (3 Replies)
Discussion started by: h@foorsa.biz
3 Replies

5. UNIX for Dummies Questions & Answers

SSH tunnel working for ssh but not for sshfs

I'm trying to setup a link between my home pc (work-machine) and a server at work (tar-machine) that is behind a gateway (hop-machine) and not directly accessible. my actions: work-machine$ ssh -L 1234:tar-machine:22 hop-machine work-machine$ ssh -p 1234 user@127.0.0.1 - shh access on... (1 Reply)
Discussion started by: Vathau
1 Replies

6. IP Networking

Help with SSH tunnel?

I have a Java web app on machine (X) that needs to talk to an LDAP server (Y) on :636, but the LDAP server is only accessible on a particular network. I can login to a machine (Z) on that network from X, and this machine can talk to the LDAP server on :636. How can I tunnel so that X can... (2 Replies)
Discussion started by: spacegoose
2 Replies

7. UNIX for Advanced & Expert Users

Ssh tunnel question

Hi all I have a suite of scripts that ssh to remote servers within a cluster and run some tests. This is done from a central server so that all of the test results can be captured in one location. Problem is I now have 509 tests and the number is growing. The scripts work by establishing a... (2 Replies)
Discussion started by: steadyonabix
2 Replies

8. Proxy Server

WebSocket over SSH tunnel - is it possible?

Hello, I have a video streaming application that utilizes a WebSocket for the server <-> client communication. My goal is to make the video streaming service available over the internet in the cases where neither the server nor client have public IPs. One way to do this is over a VPN... (8 Replies)
Discussion started by: Vladislav
8 Replies

9. Solaris

Tunnel X over ssh for 11.3

Hello Solaris experts: Trying to bring the 11.3 gdm screen over ssh to a Linux Box: I did the following: 1. made chanes to /etc/ssh/sshd_config & bounced ssh daemon: # X11 tunneling options X11Forwarding yes X11DisplayOffset 10 X11UseLocalhost yes 2. From the remote Linux box: ... (6 Replies)
Discussion started by: delphys
6 Replies

10. UNIX for Advanced & Expert Users

Tunnel using SSH

I am not clear with the part of concept of Tunneling using ssh. ssh -f -N -L 1029 192.168.1.47:25 james@192.168.1.47 I found out that above code works for me . but didn't quite well understood how ti works and need to ask you guys some questions. since we are using tunnel through ssh ... (2 Replies)
Discussion started by: lobsang
2 Replies

LEARN ABOUT SUSE

vinagre

VINAGRE(1)						      General Commands Manual							VINAGRE(1)

NAME

       vinagre - a remote desktop viewer for the GNOME Desktop

SYNOPSYS

       vinagre [OPTIONS] [server][::port|:display]

DESCRIPTION

       vinagre	is  a  remote desktop viewer for the GNOME desktop. It can support many protocols using a plugin system. Current plugins exist for
       VNC and SSH.  Vinagre has many features, among others:.

       - Support for multiple connections simultaneously

       - Bookmarks and history support

       - Avahi integration

       - GNOME keyring integration

       - GNOME panel applet to quickly launch vinagre to access VNC servers

       - You can connect to a VNC server by double clicking on a .vnc file when using nautilus.

OPTIONS

   Help Options:
       -?, --help
	      Show help options

       --help-all
	      Show all help options

       --help-gtk
	      Show GTK+ options

   Application Options:
       --help-vnc
	      Show VNC options

       -F, --file=filename
	      Opens a .vnc file

       -f, --fullscreen
	      Open vinagre in fullscreen mode

       -n, --new-window
	      Create a new toplevel window in an existing instance of vinagre

       --display=DISPLAY
	      X display to use

       Run 'vinagre --help' to see a full list of available command line options

OPERANDS

       The following operands are supported:

       [server][::port|:display]
	      Specifies the VNC server to connect to. The VNC server can be either a hostname, or an IP address. If the server is an IPv6 address,
	      it must be enclosed by square brackets. The address can optionally be followed by two colons (::) and the VNC port number, or alter-
	      natively by one colon (:) and the display where Vinagre should run. If a port is not specified, default value of 5900 will be  used.
	      If  the value is lower than 1024, 5900 will be added to it. For example, ":0" means "5900" and ":1" means ":5901". If only a port is
	      specified, but not the hostname, localhost will be assumed.  Possible values for the display are between 0 and 1024.  If	a  display
	      number greater than 1024 is specified, it will be assumed to be a port.  Note that you can't specify the port and the display at the
	      same time.

EXAMPLES

       Example 1: Start vinagre from the command line

       example% vinagre

       Example 2: Create a new top-level window

       example% vinagre --new-window

       Example 3: Connect to a specified VNC server and port

       example% vinagre snoopy::5900

       Example 4: Connect to a specified IPv4 address and port

       example% vinagre 192.168.1.35::2700

       Example 5: Connect to a specified IPv6 address and port

       example% vinagre [2001:0db8:0:0:0:0:1428:57ab]::2700

       Example 6: Connect to a VNC server specified by a .vnc file

       example% vinagre -F snoopy.vnc

       Example 7: Connect to localhost on a specified port in fullscreen mode

       example% vinagre -f ::5900

SEE ALSO

       Vinagre help manual

AUTHOR

       Vinagre was written by Jonh Wendell <wendell@bani.com.br>

       This manual page was written by Emilio Pozuelo Monfort <pochu@ubuntu.com> and Halton Huo <halton.huo@sun.com>.

User Commands							 August 12th 2009							VINAGRE(1)
All times are GMT -4. The time now is 02:46 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy