[IWE] UPDATE
Bill Patient
iwe@warhead.org.uk
Mon, 5 Feb 2007 22:41:41 -0500
This is a multi-part message in MIME format.
------=_NextPart_000_0029_01C74976.DA978480
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: 7bit
Ok. Here goes.
VNC "listens" on a specific set of ports on your home machine.
When you call "vncserver" it starts the vnc session and broadcasts on port
5801.
SSHd, when set up, expects a connection on port 22.
So, you must allow port 22 traffic through to the internal ip address of the
machine you are connecting to (your home machine). Most likely, if it is the
only machine on the router, the address will be 192.168.0.2.but you can
check this with the standard tools. You establish the firewall rule using
the configuration screens of your router.
Now. Nearly all companies will allow traffic through port 22.not so for most
other ports.so you should be able to ssh to your home machine from inside
the firewall.
Once you ssh in, you can direct a forward of port 5801 across the ssh
connection.
When using ssh (the windows version)..the cmd was ssh2 -L
5802:localhost:5801 <yourservernameorIPgoeshere> .
You then start vncviewer on your machine at work and ask it to connect to
localhost:2 since you forwarded 5801 from your home machine to 5802 on your
work machine via the ssh tunnel (the -L switch).
_____
From: iwe-admin@warhead.org.uk [mailto:iwe-admin@warhead.org.uk] On Behalf
Of Jay Burns IV
Sent: Monday, February 05, 2007 10:21 PM
To: iwe@warhead.org.uk
Subject: Re: [IWE] UPDATE
Andrew-
You're getting to the hairy edge of my knowledge on this, so expect me to
misspeak sooner or later.
The cable modem is a Motorola Surfboard, in the 5000 series. So it is not
a router per se (at least, it doesn't appear to be). The router is directly
wired to the Surfboard; it is a D-Link DI-624 wireless router., It does
present a private LAN on the back side; it is set up to be a DHCP server,
and gives my computer an IP address of 168.192.0.x, where x is generally 100
or 101. Its DHCP server address is 168.192.0.1. That address is also set up
as my default gateway.
When you say "program a port forward to your computer's IP and address the
router's WAN address from the outside", exactly what do you mean?
jb4
Andrew Grygus wrote:
On Thu, 01 Feb 2007 20:28:20 -0600, Jay Burns IV wrote:
Know about VNC, heard about SSH.
Next idiot question goes something like, "VNC or SSH to /where/?" Home
machine is generally off, and even if it were on, I currently haven't
the slightest idea 1) what my cable modem's IP address is, and 2) How to
get access to it on the other side of the router.
(I'm educable, though, so any ideas on how to do that? The
"documentation" that accompanies the router is just the other side of
useless, and Comcast is generally inaccessible...)
Generally a cable modem acts as a bridge and just passes traffic
through without an address change so if your computer is attached
directly to the cable modem the numbers you get by typing
ipconfig /all (Windows) are the real numbers accessable from
outside.
If you have your own router between the cable modem and your
computer you can get the real addresses by loging into it and
checking the WAN status. If you have an internal router that
gives your local network a private address range (like 192.168.1.n)
you'll need to program a port forward to your computer's IP
and address the router's WAN address from the outside.
If your cable modem is actually a router, giving you private addresses
on the LAN, then you need information from the service provider.
Andrew Grygus
_______________________________________________
IWE mailing list
IWE@warhead.org.uk
http://lists.warhead.org.uk/mailman/listinfo/iwe
------=_NextPart_000_0029_01C74976.DA978480
Content-Type: text/html;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
<html xmlns:v=3D"urn:schemas-microsoft-com:vml" =
xmlns:o=3D"urn:schemas-microsoft-com:office:office" =
xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns=3D"http://www.w3.org/TR/REC-html40">
<head>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Dus-ascii">
<meta name=3DGenerator content=3D"Microsoft Word 11 (filtered medium)">
<!--[if !mso]>
<style>
v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style>
<![endif]-->
<style>
<!--
/* Font Definitions */
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
{font-family:"Comic Sans MS";
panose-1:3 15 7 2 3 3 2 2 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman";
color:#000066;}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:blue;
text-decoration:underline;}
pre
{margin:0in;
margin-bottom:.0001pt;
font-size:10.0pt;
font-family:"Courier New";
color:#000066;}
span.EmailStyle18
{mso-style-type:personal-reply;
font-family:Arial;
color:navy;}
@page Section1
{size:8.5in 11.0in;
margin:1.0in 1.25in 1.0in 1.25in;}
div.Section1
{page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext=3D"edit">
<o:idmap v:ext=3D"edit" data=3D"1" />
</o:shapelayout></xml><![endif]-->
</head>
<body bgcolor=3Dsilver lang=3DEN-US link=3Dblue vlink=3Dblue>
<div class=3DSection1>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'>Ok. Here =
goes.<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'>VNC “listens” on a =
specific
set of ports on your home machine.<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'>When you call =
“vncserver” it
starts the vnc session and broadcasts on port =
5801.<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'>SSHd, when set up, expects a =
connection on
port 22.<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'>So, you must allow port 22 traffic =
through
to the internal ip address of the machine you are connecting to (your =
home
machine). Most likely, if it is the only machine on the router, the =
address
will be 192.168.0.2…but you can check this with the standard =
tools. You
establish the firewall rule using the configuration screens of your =
router. <o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'>Now. Nearly all companies will =
allow
traffic through port 22…not so for most other ports…so you =
should
be able to ssh to your home machine from inside the =
firewall.<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'>Once you ssh in, you can direct a =
forward
of port 5801 across the ssh connection.<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'>When using ssh (the windows =
version)..the
cmd was ssh2 –L 5802:localhost:5801 =
<yourservernameorIPgoeshere> . <o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'>You then start vncviewer on your =
machine
at work and ask it to connect to localhost:2 since you forwarded 5801 =
from your
home machine to 5802 on your work machine via the ssh tunnel (the =
–L switch).<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 color=3Dnavy face=3DArial><span =
style=3D'font-size:
10.0pt;font-family:Arial;color:navy'><o:p> </o:p></span></font></p>
<div>
<div class=3DMsoNormal align=3Dcenter style=3D'text-align:center'><font =
size=3D3
color=3Dblack face=3D"Times New Roman"><span =
style=3D'font-size:12.0pt;color:windowtext'>
<hr size=3D2 width=3D"100%" align=3Dcenter tabindex=3D-1>
</span></font></div>
<p class=3DMsoNormal><b><font size=3D2 color=3Dblack face=3DTahoma><span
style=3D'font-size:10.0pt;font-family:Tahoma;color:windowtext;font-weight=
:bold'>From:</span></font></b><font
size=3D2 color=3Dblack face=3DTahoma><span =
style=3D'font-size:10.0pt;font-family:Tahoma;
color:windowtext'> iwe-admin@warhead.org.uk =
[mailto:iwe-admin@warhead.org.uk] <b><span
style=3D'font-weight:bold'>On Behalf Of </span></b>Jay Burns IV<br>
<b><span style=3D'font-weight:bold'>Sent:</span></b> Monday, February =
05, 2007
10:21 PM<br>
<b><span style=3D'font-weight:bold'>To:</span></b> =
iwe@warhead.org.uk<br>
<b><span style=3D'font-weight:bold'>Subject:</span></b> Re: [IWE] =
UPDATE</span></font><font
color=3Dblack><span =
style=3D'color:windowtext'><o:p></o:p></span></font></p>
</div>
<p class=3DMsoNormal><font size=3D3 color=3D"#000066" face=3D"Times New =
Roman"><span
style=3D'font-size:12.0pt'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D3 color=3D"#000066" face=3D"Comic Sans =
MS"><span
style=3D'font-size:12.0pt;font-family:"Comic Sans MS"'>Andrew-<br>
<br>
You're getting to the hairy edge of my knowledge on this, so =
expect me to
misspeak sooner or later.<br>
<br>
The cable modem is a Motorola Surfboard, in the 5000 series. =
So it
is not a router per se (at least, it doesn't appear to be). The =
router is
directly wired to the Surfboard; it is a D-Link DI-624 wireless router., =
It
does present a private LAN on the back side; it is set up to be a DHCP =
server,
and gives my computer an IP address of 168.192.0.<i><span =
style=3D'font-style:
italic'>x</span></i>, where x is generally 100 or 101. Its DHCP server =
address
is 168.192.0.1. That address is also set up as my default =
gateway.<br>
<br>
When you say "program a port forward to your computer's IP and =
address the
router's WAN address from the outside", exactly what do you =
mean?<br>
<br>
jb4<br>
<br>
</span></font><br>
Andrew Grygus wrote: <o:p></o:p></p>
<pre wrap=3D""><font size=3D2 color=3D"#000066" face=3D"Courier =
New"><span
style=3D'font-size:10.0pt'>On Thu, 01 Feb 2007 20:28:20 -0600, Jay Burns =
IV wrote:<o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'><o:p> </o:p></span></font></pre><pre><fon=
t
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'> <o:p></o:p></span></font></pre>
<blockquote style=3D'margin-top:5.0pt;margin-bottom:5.0pt' =
type=3Dcite><pre wrap=3D""><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>Know about VNC, heard about =
SSH.<o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'><o:p> </o:p></span></font></pre><pre><fon=
t
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>Next idiot question goes something like, =
"VNC or SSH to /where/?" Home =
<o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>machine is generally off, and even if it were =
on, I currently haven't <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>the slightest idea 1) what my cable modem's =
IP address is, and 2) How to <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>get access to it on the other side of the =
router.<o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'><o:p> </o:p></span></font></pre><pre><fon=
t
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>(I'm educable, though, so any ideas on how to =
do that? The <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>"documentation" that accompanies =
the router is just the other side of =
<o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>useless, and Comcast is generally =
inaccessible...)<o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'> =
<o:p></o:p></span></font></pre></blockquote>
<pre wrap=3D""><font size=3D2 color=3D"#000066" face=3D"Courier =
New"><span
style=3D'font-size:10.0pt'><o:p> </o:p></span></font></pre><pre><fon=
t
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>Generally a cable modem acts as a bridge and =
just passes traffic <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>through without an address change so if your =
computer is attached <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>directly to the cable modem the numbers you =
get by typing <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>ipconfig /all (Windows) are the real numbers =
accessable from <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>outside.<o:p></o:p></span></font></pre><pre><f=
ont
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'><o:p> </o:p></span></font></pre><pre><fon=
t
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>If you have your own router between the cable =
modem and your <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>computer you can get the real addresses by =
loging into it and <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>checking the WAN status. If you have an =
internal router that <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>gives your local network a private address =
range (like 192.168.1.n) <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>you'll need to program a port forward to your =
computer's IP <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>and address the router's WAN address from the =
outside.<o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'><o:p> </o:p></span></font></pre><pre><fon=
t
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>If your cable modem is actually a router, =
giving you private addresses <o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>on the LAN, then you need information from =
the service provider.<o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'><o:p> </o:p></span></font></pre><pre><fon=
t
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>Andrew =
Grygus<o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'><o:p> </o:p></span></font></pre><pre><fon=
t
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'><o:p> </o:p></span></font></pre><pre><fon=
t
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>______________________________________________=
_<o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'>IWE mailing =
list<o:p></o:p></span></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'><a
href=3D"mailto:IWE@warhead.org.uk">IWE@warhead.org.uk</a><o:p></o:p></spa=
n></font></pre><pre><font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'><a
href=3D"http://lists.warhead.org.uk/mailman/listinfo/iwe">http://lists.wa=
rhead.org.uk/mailman/listinfo/iwe</a><o:p></o:p></span></font></pre><pre>=
<font
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'><o:p> </o:p></span></font></pre><pre><fon=
t
size=3D2 color=3D"#000066" face=3D"Courier New"><span =
style=3D'font-size:10.0pt'> <o:p></o:p></span></font></pre></div>
</body>
</html>
------=_NextPart_000_0029_01C74976.DA978480--