[OT] Re: vnc access

Mon Feb 19 01:42:08 GMT 2007

On 18/02/07, Ouattara Oumar Aziz <wattazoum at gmail.com> wrote:
> Paul Kaplan a écrit :
> > On Sunday 18 February 2007 8:10:49 am S. William Schulz wrote:
> >> On Sun, 2007-02-18 at 07:16 -0500, Paul Kaplan wrote:
> >>> I don't believe the problem is with my router.  I am forwarding ports
> >>> 5800 and 5900 to my target machine at home.  The problem is that when I'm
> >>> behind a corporate firewall at work, I can't contact home, and I have no
> >>> admin access to the corp firewall.
> >> Can you ssh out from work to your home?  Or use Hamachi?  I always use
> >> VNC over a tunnel anyway, but perhaps using one or the other as an
> >> encrypted tunnel would help you get out of your corporate network and
> >> enable access to your home machines.
> >
> > The box I need to connect to is an XP SP2 box running RealVNC.  How do I set
> > up the ssh tunnel from edgy?
> > Paul
>
> Hi,
>
> Let me resume what i understood :
>
> You have a WinXP at home connected to the internet and somehow you can
> access it via realVNC from the Internet.
> But at your office the firewall doesn't let you go through the VNC
> standard port . It doesn't let ping go through either.
>
> Well, if it''s the case , the thing you are looking for is a port
> allowed by the firewall. So you can choose port 8080 or 443 (or else
> from another protocol allowed). Then, I suggest you configure VNC Server
> to use it. then you're done.
>
> Another very nice solution I propose is that you install OpenVPN server
> on your home computer and make it listen on 443. (
> http://openvpn.net/howto.html )
> Then install openvpn and openVPN admin on the client and set it up (very
> few things to put in openvpn-admin) . (
> http://sourceforge.net/projects/openvpn-admin/ ) and you're done.
>
> NOTE: I think the Thread is OFF Topic : you're not asking for help
> concerning Ubuntu but you're asking us to tell you how to bypass your
> corporate firewall. I don't mind telling you but you must know that it's
> considered as piracy.

Bypassing a corporate or private firewall is perfectly legal (certain
exceptions may apply in high security situations).

However, there's a good chance that it's against company policy and
it's a case of user beware. In this case it's up to Paul to find out
what his company's policy is regarding the corporate firewall and
abide by it or get permission to do what he is doing.

In my own case, I've checked our policy (yes, I'm one of the few
people who doesn't just blindly click "Yes" or "Agree" in situations
where my ass could be on the line) and it does not specifically
address the firewall (mind you, our 100000+ user corporate network is
so full of holes and run by completely (not just partially)
incompetent idiots that I'd be shocked if they even understood what a
firewall was, let alone how to properly implement it).

Eric.