Re: VNC w/SSH Tunnel

Subject: Re: VNC w/SSH Tunnel
From: Jamie Hushower (hushower@alaska-geeks.com)
Date: Thu Jan 29 2004 - 15:16:07 AKST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: Troy Melhase: "RE: VNC w/SSH Tunnel"
• Previous message: Tim Jordan: "Re: VNC w/SSH Tunnel"
• In reply to: Tim Jordan: "Re: VNC w/SSH Tunnel"
• Next in thread: Joshua Kugler: "Re: VNC w/SSH Tunnel"
• Reply: Jamie Hushower: "Re: VNC w/SSH Tunnel"
• Reply: Jamie Hushower: "Re: VNC w/SSH Tunnel"

I am unaware of an SSH server for Windows. Without such, Windows cannot
be the end point of a VNC connection *and* all traffic remain encrypted.
If you need encryption only on the public network (Internet), that is
possible. My situation kept all traffic encrypted because the SSH server
was also the VNC server.

If you need encryption all the way: As you are running all Win2K and
WinXP boxes, I recommend using Windows Terminal Services which is "built
into" Win2K and XP. There is a client for Linux as well as Windows and
it includes its own encryption. The only port to worry about forwarding,
should it be necessary, is 3389, TCP. In my experience, the bandwidth
requirements and response have been better with MSTS than VNC (and
TightVNC) over SSH with and without SSH compression.

Feel free to clarify and I will address your situation.

-Jamie

Tim Jordan wrote:

> Jamie, Thank you.
>
> My scenerio: Windows 2K & XP clients inside our LAN & WAN. I'd need
> full remote control of users PC using VNC & SSH. Our admin's run W2K &
> Windows XP boxes, a few of us use Linux.
>
> I then need to sniff the traffic between the test boxes verifying the
> remote session is encrypted.
>
> I have no experience with VNC or SSH. I have been reading several
> documents pertaining to the subject. I understand the concepts now I
> need to put it all together.
>
> Any advice is appreciated,
> Tim Jordan
>
>
> On Thu, 2004-01-29 at 23:46, Jamie Hushower wrote:
>
>>/I have done it and am doing using right now. The setup is rather easy
>>(excluding firewall issues). My setup involves using Putty (Windows)
>>SSH to a Linux firewall running VNCServer. My intermediate firewall
>>forwards SSH traffic into the private network and nothing else.
>>
>>I can offer setup specifics if you include your specifics: Windows or
>>Linux starting point? Is the remote machine behind a firewall? Linux
>>firewall?
>>
>>A good starting place for Putty tunnels is the Putty homepage: /
>>/_http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html_.
>>
>>Here is a good site on Linux SSH port forwarding:
>>_http://www.rzg.mpg.de/networking/tunnelling.html_
>>
>>-Jamie
>>
>>
>>Tim Jordan wrote:
>>
>>> Anyone have a good starting place on using VNC with SSH so I can remote
>>> control Windows desktops?
>>>
>>> Has anyone done this?
>>>
>>> Thanks,
>>> TJ
>>>
>>>
>>> ---------
>>> To unsubscribe, send email to <aklug-request@aklug.org>
>>> with 'unsubscribe' in the message body.
>>>
>>>
>>> /
>>

-- 
Jamie Hushower
Computer Consultant
Rent-A-Geek
223-9136
---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.

• Next message: Troy Melhase: "RE: VNC w/SSH Tunnel"
• Previous message: Tim Jordan: "Re: VNC w/SSH Tunnel"
• In reply to: Tim Jordan: "Re: VNC w/SSH Tunnel"
• Next in thread: Joshua Kugler: "Re: VNC w/SSH Tunnel"
• Reply: Jamie Hushower: "Re: VNC w/SSH Tunnel"
• Reply: Jamie Hushower: "Re: VNC w/SSH Tunnel"

This archive was generated by hypermail 2a23 : Thu Jan 29 2004 - 15:16:17 AKST