When you do a port forward on an SSH server, "localhost" is from the SSH
server's point of view. In this context, localhost = remotehost.
-ME
----- Original Message -----
From: "Joseph A. Knapka" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, December 20, 2000 2:08 PM
Subject: Re: VNC and SSH
> "Joseph A. Knapka" wrote:
> >
> > "Erdely, Michael" wrote:
> > >
> > > Is your goal to use the java client from a web browser? If not, let's
> > > abandon that line of thinking now.
> > >
> > > First of all, find out what port VNC Server is running on. Make sure
that
> > > "Allow Loopback" is enabled.
> > > >From the client, run "ssh -L 5920:localhost:5902 remotehost" This
assumes
>
> This makes no sense. You are just forwarding port 5920 from localhost
> to itself, via the SSH server, with encryption for the first half of the
> journey only. "ssh -L 5920:remotehost:5902 remotehost" will do what you
> (seem to) want. The "-L <localport>:<remotehost>:<remoteport>" option
> means "forward all data arriving at localhost:<localport> to
> <remotehost>:<remoteport>, using an encrypted tunnel for the part
> of the journey between localhost an sshd-host".
>
> > > that VNC Server is running on port 5902 on the remote host. Also,
> > > localhost, in this context, is referring to "localhost" from the SSH
> > > Server's point of view... meaning: itself. Now, connect, from the
client,
> > > to localhost:20 using the vncviewer.
>
> > > Now, if your goal _IS_ to use the java client from a web browser, make
sure
> > > that 1. VNC Server _IS_ running on 5902. Also make sure that nothing
is
> > > running on the client machine on ports 5902 or 5802. Now, make your
ssh
> > > connection like this: ssh -L 5902:localhost:5902 -L
5802:localhost:5802
> > > remotehost. Next, use your web browser and connect to
> > > http://remotehost:5802/. Bingo.
> >
> > Just to avoid further confusion: you surely meant to say "connect to
> > http://localhost:5802/."
>
> Now that I read more carefully I see that my suggestion
> immediately above would not work.
>
> Perhaps I completely misunderstand what you are trying to do here.
> If the VNC server is on remotehost at display :2, along with the
> SSH daemon, and you want the viewer to run on localhost with an
> encrypted tunnel to remotehost, and you want to use the Java viewer,
> you need local ports 5802 and 5902 forwarded to the corresponding
> remote ports. So you would do:
>
> ssh -L 5902:remotehost:5902 -L 5802:remotehost:5802 remotehost
>
> and connect to "http://localhost:5902/".
>
> I'm sorry if I have confused the issue further :( But the method
> above will certainly work for the case described.
>
> -- Joe Knapka
> ---------------------------------------------------------------------
> To unsubscribe, send a message with the line: unsubscribe vnc-list
> to [EMAIL PROTECTED]
> See also: http://www.uk.research.att.com/vnc/intouch.html
> ---------------------------------------------------------------------
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------
