Firewall question
Charles Moon
cmoon "at" mmcable.com
Thu, 15 Jun 2000 17:08:02 +0000
I have been watching this thread and haven't seen any good replies
concerning NAT portion. I believe you are required to map/or redirect ports
on your NAT router/firewall. That is, if your internet ip is
111.222.333.444 and your internal box w/ vnc is 192.168.1.x, then
111.222.333.444:<some_arbritary_but_non_conflicting_port> will be mapped and
redirected to 192.168.1.x:5900. I have yet to perform this task
successfully, but I understand the principle. If I understand correctly
ipmasqadm is used for reverse NAT. I will continue to watch this thread
with interest.
-----Original Message-----
From: owner-vnc-list "at" uk.research.att.com
[mailto:owner-vnc-list "at" uk.research.att.com]On Behalf Of Leland V.
Lammert
Sent: Thursday, June 15, 2000 12:00 PM
To: vnc-list "at" uk.research.att.com
Cc: Stuart McGie
Subject: RE: Firewall question
At 01:38 PM 6/14/00, you wrote:
>With NAT you have to open up port 5900 for connection.
>
>Stuart
Hi Stuart,
Thanks for the reply! Port 5900 is currently open, as I *can* connect from
*inside* the firewall to a host outside. The problem occurs in that I need
the connection in the other direction, .. i.e. I need to make the machine
*inside* the firewall the host, and I cannot see a way to connect from that
machine as a host to a remote. (It is running an off-net IP address.) IOW, I
need the 'host/server' (behind the firewall) to call the 'remote' because
the host is NAT and can only support an outbound connection.
I cannot imagine that there are many others with this same sort of problem,
as almost all of our clients have NAT boxes for their machines. If you have
any ideas, please advise.
Lee
============================================
Leland V. Lammert lvl "at" omnitec.net
Chief Scientist Omnitec Corporation
Network/Internet Consultants www.omnitec.net
============================================
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to majordomo "at" uk.research.att.com
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to majordomo "at" uk.research.att.com
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------