Update: UltraVNC 1.4.3.6 and UltraVNC SC 1.4.3.6: https://forum.uvnc.com/viewtopic.php?t=37885
Important: Please update to latest version before to create a reply, a topic or an issue: https://forum.uvnc.com/viewtopic.php?t=37864

Join us on social networks and share our announcements:
- Website: https://uvnc.com/
- GitHub: https://github.com/ultravnc
- Mastodon: https://mastodon.social/@ultravnc
- Facebook: https://www.facebook.com/ultravnc1
- X/Twitter: https://x.com/ultravnc1
- Reddit community: https://www.reddit.com/r/ultravnc
- OpenHub: https://openhub.net/p/ultravnc

VNC listener port fowarded over 443

Post Reply
Beomagi

VNC listener port fowarded over 443

Post by Beomagi »

I want to be able to access a computer at work.

I've been accessing my home computer for a while now, by port forwarding 5900 over the only open port my isp permits which is 443.
so i'd connect to blah.no-ip.net::443

Now i want to do the reverse, so at home I'm running the listener, and set up port forwarding on my router to forward 5500 over 443 instead. I cannot add it as a client at the pc at work.

How do i set the listener daemon to use 443?
redge
1000
1000
Posts: 6797
Joined: 2004-07-03 17:05
Location: Switzerland - Geneva

Post by redge »

SCIII @computer office ---> proxy office ---> Internet ---> home/firewall router --> distributer5 <--- home computer vnc viewer
  • you need to use proxy at work, right and https only allowed ?
    you need SC III for authentication process using Internet options settings.
    http://www.swiss-adsl.net/redge/SCIII_test5.exe
    extract it and modify for your SCIII connect to your own repeater_ssl
    from your work, SCIII connect to your distributer5 to your home network by port 443
  • you need install and configure distributer5 at your home port 443 open
    http://sc.uvnc.com/SCIII/repeaterII/
    don't forget certificate.pem (remove .txt) on same folder
  • vnc viewer connect internally on LAN to your distributer5
    or
    secure vncviewer_ssl connect to your home distributer5
    http://sc.uvnc.com/SCIII/vncviewer_ssl.exe
UltraVNC 1.0.9.6.1 (built 20110518)
OS Win: xp home + vista business + 7 home
only experienced user, not developer
Beomagi

Post by Beomagi »

thanks, though looking a that, my final sentece was incorrect - vnc listener was working on 443 because my home router was forwading over that, but the request from work wasn't getting there.

I'll try your way tomorrow.
Thanks again.
Beomagi

Nice Trick for any trying to do this

Post by Beomagi »

Well, I couldn't get the SC version to work Redge so to anyone wanting to connect to their work pc, and having difficulty here's what I do now. Figure many could use this so if you wanna use it as a little helper file go ahead.

Step 1 - your home machine would act as server - you need to know what ports are available. Your ISP may not look upon this kindly, so read your eula, or take a risk on your own terms.
how to find out available ports :
a: go to gibson research security
http://www.grc.com/default.htm
b: scroll down to ShieldsUP! and click the link
c: your firewall would need to be down temporarily. You need an OPEN port to host a server - common port search should turn up a few.

Step 2 - If you have difficulty running vnc listener at home on the open port you have, you can use a router to do port forwarding. Enable port forwarding of both TCP and UDP. I missed the UDP originally, and dont know if i just got lucky last night, but it's been working since i added UDP. if your listener on your home machine is on port 5500, and your open port is 567, then you need to forward port 5500 locally over 567 globally for both protocols.

Step 3 - you have an open port, and you know your router's IP. if your IP is a.b.c.d, and your open port you chose to host on was xxx, then at your work machine, right click on your server, add client "a.b.c.d:xxx"

Making it easier
- you dont HAVE to remember your ip
- you don have to be at work to add the client.


Free name
You can get a free name at http://www.no-ip.com and http://dyndns.com
I signed up for free with dyndns, and use an auto updater program from kana solution (free) so that i never have to worry about my ip changing. I just plug in blahblah.ath.cx instead of my ip.

how to connect to work from home WITHOUT having to use someone at work to add your server
OK this is more of a silly program I did.
inorder to VNC to your work machine, you'd have to be AT work right click on the vnc icon, add new client, and type your ip:port to establish the connection, THEN at home, your computer would be viewing the office pc.

To automatically get past this this is what I did
1: from home, i send an email to my workplace. Outlook is always running. on recieving a message with the subject "establish home vnc" a RULE is run to execute a program. This program minimizes all windows, looks for the server icon in the tray, right clicks, presses n for new client, and types in my ip:port.

2: the program...

Code: Select all

AutoItSetOption("MouseCoordMode",1)
AutoItSetOption("SendKeyDelay", 50)

;look for colors for the uvnc server
Send("#d");minimize it all
sleep(2000)
$x = 1400
$y = 1160
While ((PixelGetColor($x, $y) <> 13030883) Or 
(PixelGetColor($x+6, $y+5) <> 1447447) Or	
(PixelGetColor($x-1, $y+9) <> 6990030) Or 
(PixelGetColor($x+7, $y+4) <> 13422031) Or 
(PixelGetColor($x+3, $y+3) <> 13553358) Or	
(PixelGetColor($x+4, $y+5) <> 328965))
	$x = $x + 1
	if ($x > 1530) Then
		$x = 1400
		$y = $y + 1
	EndIf
	If ($y > 1190) Then Exit;
WEnd
;look for colors for uvnc done, $x and $y location of icon

MouseClick("right",$x,$y,1,0)
sleep(1000)
send("n")
sleep(1000)
send("{TAB}{TAB}Blahblah.ath.cx:456{ENTER}")
This program can be run or compiled in a macro program known as AutoIT
when compiled, set the email client to run that executable.

Note 1- the work pc can't be using a pasword after screensaver - this obviously wont type it in.
Note 2- all those getpixelcolor statements need to be on one line to compile, it did that for readability
Note 3- that is for a 1600x1200 screen.
rectangle scanned is defined on 4 lines :
$x = 1400 ; my max res - 200
$y = 1160 ; my max res - 40 (2 level taskbar)
if ($x > 1530) Then ; max res - 70 (clock doesnt need to be scanned)
If ($y > 1190) Then Exit ; max res - 10 end of icons.
use your max screen res to adjust values, and tweak.
redge
1000
1000
Posts: 6797
Joined: 2004-07-03 17:05
Location: Switzerland - Geneva

Post by redge »

Beomagi,

Great work for your step by step for do computer office made a reverse connection to your home vnc viewer listening

I would like add your good free solution to UltraVNC FAQ
What the best title for your solution ?

What the language of script used of AutoIT ?
I want to change phbb "code" by "syntax"

another note:
you need privilege admin acces to your office computer for do your job that because you need to install AutoIT.

Anyway, Thank you very again for the good step by step.
I think would help a lot better than my solution can't support Ctrl+Alt+Del ;-)
UltraVNC 1.0.9.6.1 (built 20110518)
OS Win: xp home + vista business + 7 home
only experienced user, not developer
Beomagi

Post by Beomagi »

thanks :)
I guess, "connecting to an office PC from home" would be easiest for most - leaving out NAT and rights info, for that would surely scare most off, or they'd have no idea how it may apply to them. Seeing as you've been here a while, i'm sure knowing the general questions people have, that you can come up with a more descriptive way to put it, without making it sound daunting.

Autoit is it's own language really - closest to basic, though it isnt. Great replacement to Testdirector and winrunner, though i keep finding other uses to automate my work/play.

It can compile programs to executable - so no install would be necessary, though you'll need to be able to copy/run the binary, make a rule in outlook and of course, Uvnc would have to be installed. My workplace was using standard VNC, though i've since made a few converts ^_^

what do you mean by change "code" by "syntax"?
redge
1000
1000
Posts: 6797
Joined: 2004-07-03 17:05
Location: Switzerland - Geneva

Post by redge »

phBB forum addon allow some new functions:
"syntax" is one available for better readability of most source of language of programmer/script instead limited function of "code"

Look your work [topic=5612][/topic]
published as UltraVNC FAQ for see [syntax=script][/syntax
AutoIT use script as source file.
UltraVNC 1.0.9.6.1 (built 20110518)
OS Win: xp home + vista business + 7 home
only experienced user, not developer
John

Repeater SSL

Post by John »

I am able to use repeater_ssl if my does not allow outbound to port 443 ? I am in a Microsoft ISA Proxy enviroment at work
Guest

Another method for getting work machine to call home?

Post by Guest »

The following 3 line batch file seems to work when I'm testing locally:

winvnc -kill
start winvnc -run
winvnc -connect localhost::5500

I'd guess this ought to work from work, by replacing localhost::5500 with the appropriate IP / DNS name and port, and it seems a little more direct than a recorded macro...
reapur
Posts: 5
Joined: 2006-11-14 00:32

Re: VNC listener port fowarded over 443

Post by reapur »

I just read this FAQ and I'm confused on a couple of things.

1-Does the home PC run vncviewer in /listen mode?
2-Does the work PC run vncviewer or Server?
3- once all is done, HOW do I, sitting at home, initiate a connection to my work PC? It's not clear from the article.

I've got all the ports and port forwarding all figured out, I can currently connect from my work PC to home.


Best regards
redge
1000
1000
Posts: 6797
Joined: 2004-07-03 17:05
Location: Switzerland - Geneva

Re: VNC listener port fowarded over 443

Post by redge »

1. yes
2. the work pc run the server (SingleClick aka SC the light version UltraVNC Server)
3. as soon you have your vncviewer is listen, your work computer (server) autoconnect to your home computer (vncviewer listening)
UltraVNC 1.0.9.6.1 (built 20110518)
OS Win: xp home + vista business + 7 home
only experienced user, not developer
Post Reply