On Wednesday, October 24, 2001 11:03, "Kenneth French" <[EMAIL PROTECTED]> wrote: > > I hope that someone might have a solution for me. We have an external server > that we need to telnet to that we then export the display of an X-Windows > session back to the protected network. How can I get the display exported to > potentially multiple workstations inside my network through the NAT? The > internal network is configured using a private network IP range.
Normally X-Windows uses port 6000. You can open that up to the group of addresses for the workstations that need to run X. However, this is not my recommended solution. The way I have my host systems configured is no telnet access and a ssh daemon running for remote access. I then run an ssh client with X-11 forwarding on the workstation to connect to the host. When the connection is made it automatically sets up a virtual display on the host that is tunneled (through the ssh connection) to your workstation. There are no special firewall rules other than allowing the outgoing ssh connections just as you do for telnet (port 22 instead of 23). Works great, is secure, and easier to use. -- John Stokes Principal 888 336-0504
