I RDC to an NT Terminal Server on the same LAN as the gateway and workstation/vncserver, and setup the SSH tunnel with putty by specifying 4 things. Gateway IP, Compression, source port (5905), and destination IP:port (10.3.1.194:5900).
I minimize the connection, then connect to 10.3.1.194:1 using Windoz VNC Viewer which works fine. Viewer won't connect without this SSH connection, but the forwarded port will persist a long time after exiting the connection, so I can still VNC. When I configure and connect my home XP box the same way with putty, but to the gateway's external IP, I get an open localhost port but no connection to forwarded port. I've tried this from the command line with Cygwin/OpenSSH like this: ssh -f -N -C -T -l username -L 5905:10.3.1.194:5900 gateway.corp.com >From your response I assume that the netstat output confirms that the port is not blocked, and also that cox.net is probably not blocking it. What's wrong with the tunnel config, it works when the hosts are on the same subnet, but not when I come from outside? -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jerry Westrick Sent: Tuesday, August 15, 2006 11:25 AM To: [email protected] Subject: Re: Does tcp 0 0 *:5901 *:* LIST mean 5901 is wide open? On Tuesday 15 August 2006 19:49, Robert Van Overmeiren wrote: > I can VNC to my workstation from hosts on our LAN, but when I tunnel > through the SSH gateway from outside, my vnc viewer connection times > out. I can't get a telnet response from the vncserver either. I bypassed > my home firewall, connecting XP directly into the cable modem, made my > SSH connection, and VNC Viewer still times out. Windoz Firewall and fast > client switching is turned off. > > > > I instantiate an SSH port forwarded connection, through the gateway, > from localhost 5905 (Windoz XP) to the vncserver (Fedora 5). When I > execute 'netstat -a' on XP, I can see the open port (RFVO2:5905) > listening but can't connect to it. > > > > I tried (vncviewer): > > Localhost:5 > > Localhost:5905 > > 10.3.1.194:1 (workstation session) > > RFVO2:5 > > RFVO2:5905 > > > > Localhost:0 gives me infinite recursion desktops, even though vncserver > isn't running locally. > > > > > > netstat -a | grep 5901 on the gateway returns > > > > tcp 0 0 *:5901 *:* LIST > > > > ...as well as info on another host obviously running VNC. > > > > Does this mean the gateway is not blocking the port? > > > > How can I tell for sure? > > > > Does the ISP, like cox.net, sometimes block the use of VNC? > > > > > > Best regards, > > > > Robert Van Overmeiren > best guess > Software Engineer > _______________________________________________ > VNC-List mailing list > [email protected] > To remove yourself from the list visit: > http://www.realvnc.com/mailman/listinfo/vnc-list Best guess is ssh tunnel nost setup right... wanna give us your -L parameter? Jerry _______________________________________________ VNC-List mailing list [email protected] To remove yourself from the list visit: http://www.realvnc.com/mailman/listinfo/vnc-list _______________________________________________ VNC-List mailing list [email protected] To remove yourself from the list visit: http://www.realvnc.com/mailman/listinfo/vnc-list
