Update: UltraVNC 1.4.3.6 and UltraVNC SC 1.4.3.6: https://forum.uvnc.com/viewtopic.php?t=37885
Important: Please update to latest version before to create a reply, a topic or an issue: https://forum.uvnc.com/viewtopic.php?t=37864

Join us on social networks and share our announcements:
- Website: https://uvnc.com/
- GitHub: https://github.com/ultravnc
- Mastodon: https://mastodon.social/@ultravnc
- Facebook: https://www.facebook.com/ultravnc1
- X/Twitter: https://x.com/ultravnc1
- Reddit community: https://www.reddit.com/r/ultravnc
- OpenHub: https://openhub.net/p/ultravnc

Connections thru Firewalls

Post Reply
SeT
Posts: 1
Joined: 2004-05-18 20:54

Connections thru Firewalls

Post by SeT »

Please forgive me if I'm acting an idiot here, but I just want to ask a few kwershuns...

I'm looking for something that will allow me to remotely admin client pcs/servers which happen to be behind firewalls. I will be connecting from a variety of locations, sometimes from behind a firewall, sometimes not. I also need to be able to connect without confirmation from the target computer (i.e. after hours, etc).

I've used VNC in the past, as well as Radmin and several other prgs. Most, though require opening/mapping of ports on either end of the connection.

I've seen some commercial packages that use email as a means of triggering an outbound connection from the server side. I don't know if this is possible w/ UltraVNC/Repeater or not (or whether it's the better way of accomplishing what I need to do).

SO, considering that YOU have probably diddled with UVNC more that myself, what do YOU think?

tia.
Guest

Post by Guest »

U can! Even when the controlled side is behind the firewall and you cant touch the gateway's settings to make portmapping.


A(Controller)--------->Gateway---------->B(Controlled)

First

In the A side:
1) go to the ultravnc dir.
2) run "vncviewer -listen 5900"

Second

In the B side:
1) run ultravnc server
2) add new client,type A's ip

I think as long as B can go to internet, u can use this way. If company admin only permit to access port 80, to overcome just set the A to listen port 80(first kill other app using port 80 if have),the B add new client A'sIP::80
RobH
Former moderator
Former moderator
Posts: 113
Joined: 2004-05-03 18:04
Location: Chicago, IL

Post by RobH »

Yes the above should work, but I think he wants to access B without anyone being there. Correct?
cerb

Post by cerb »

Sorry I don't see the problem. I do it all the time with UVNC.
Just run Zebedee (a tunnelling program that will pass trough your firewall) as a service.

Then when you want to call the remote connection you pass it trough the zedebee UVNC configuration file (there is also a ready-to-go example file for vnc in the zedebee distribution).

When you want to connect from other locations with no firewall, then you simply call the normal vncviewer
Guest

Post by Guest »

That's true but he never mentions running the zebedee tunnel.
layrebayre
Posts: 3
Joined: 2004-05-28 20:48

zebedee

Post by layrebayre »

Cerb, which version of zebedee are you recommending? :P
RobH
Former moderator
Former moderator
Posts: 113
Joined: 2004-05-03 18:04
Location: Chicago, IL

Post by RobH »

I would think you would want to run the newest version.
Search Zebedee and you'll get the main homepage.
sgp
8
8
Posts: 17
Joined: 2004-05-19 20:31

what about NAT?

Post by sgp »

I have a slightly different configuration but the same type of problem. Can zebedee help here?

I want to remotely PC A that sits behind a NAT/firewall. Event though PC A has its own unique IP, that's only true from the inside side of the NAT. When PC A is seen outside the NAT, it's given an "external" IP which is shared by a number of other PCs.
vnc viewer is on PC B, outside the NAT and with its own unique IP.

A(internal IP)<--->NAT<--->B(vncviewer)
Leonard

Listener/Static Port mapping

Post by Leonard »

You either need to have the client connect to you or you need to map he port to forward the connection atempt to the client.

There are several names for this DNAT (Destination port Network Translation) In Linux speak I beleive.
RobH
Former moderator
Former moderator
Posts: 113
Joined: 2004-05-03 18:04
Location: Chicago, IL

Re: what about NAT?

Post by RobH »

sgp wrote:I have a slightly different configuration but the same type of problem. Can zebedee help here?

I want to remotely PC A that sits behind a NAT/firewall. Event though PC A has its own unique IP, that's only true from the inside side of the NAT. When PC A is seen outside the NAT, it's given an "external" IP which is shared by a number of other PCs.
vnc viewer is on PC B, outside the NAT and with its own unique IP.

A(internal IP)<--->NAT<--->B(vncviewer)
sOMEONE FROM THE SERVER MACHINE SHOULD RIGHT CLICK ON THE ICON IN THE TRAY AND SELECT ADD NEW CLIENT, ENTER YOUR IP OR DNS NAME.
YOU HAVE THE VIEWER WAITING IN LISTEN MODE.
YOU NUST HAVE PORT 5500 FORWARDED TO YOUR IP FOR IT TO WORK.
THE SERVER BEING BEHIND NAT DOESN'T MATTER UNLESS THEY ARE BLOCKING OUTBOUND TRAFFIC. NOT LIKELY THE CASE. :)
Post Reply