Problematic VNC scenarios

[TechnoPro]

I recently came a across 2 scenarios where remote support through VNC was a pain. I'm wondering if anyone has any solutions to these issues:

[1] I needed to support multiple (3) client PCs that are behind a router . First step is to open port 5900 (or thereabouts) and have it forwarded to some IP address. The question becomes, which IP address. The router provides DHCP and static IP addresses are not an option. And this router in question did not provide MAC address reservation.

So here was my solution (based on a DHCP scope of 192.168.0.2 - 5):

Forwarded port 5902 -> 192.168.0.2

Forwarded port 5903 -> 192.168.0.3

Forwarded port 5904 -> 192.168.0.4

Then, when I need to connect remotely, I had the user (a) tell me WAN IP address (b) tell me LAN IP address and (c) have them manually change port in VNC settings.

While it worked adequately, it is not a very elegant solution, it's inflexible, and requires the user to do a fair amout of work just to let me help them.

[2] Scenario 2 was a company that will not forward any ports on the router as to them it is an inherent security risk.

I take it VNC is therefore out of the question?

 

[Sunner]

You could always use a VPN solution for #2.

 

[Wizkid]

For #2 could you have them connect to you instead? Maybe something along the lines of pcAnywhere which should be able to do this. The built-in support thing in XP might work as well (haven't tried).

For #1 you could always run DDNS software on the 3 computers and thus obtain the IP address that way. How long is the DHCP lease for those computers? If its long enough then you can reasonably assume that the IPs aren't going to change, and only ask the user if you can't connect with the 'typical' IP.

 

[Genx87]

This is what we do at work for remote users. Have them call you with netmeeting. The only time we use VNC is when the machine is in the office. We use a VPN but without the ability to see what their VPN IP is we could have them map a share a note the session. But that is too cumbersome so the net meeting solution works best.

 

[JackMDS]

Your are on the right track with the port numbers scheme.

Tell them to leave the ports as you assigned it permanently.

You can set the Network with a DNS server that either provides a Web address or set it with IP email program that send you automatically email with their IP address.

These two pages describe the general idea.

Free Fast and Easy Remote Control, and File Transfer.
Link to: Ultr@VNC - Installation, and Settings

How can I connect to a Computer/Server through the Internet World?

Free program that email the WAN IP: dynamicIP 3.

:sun:

 

[TechnoPro]

Originally posted by: Wizkid
For #2 could you have them connect to you instead? Maybe something along the lines of pcAnywhere which should be able to do this. The built-in support thing in XP might work as well (haven't tried).

For #1 you could always run DDNS software on the 3 computers and thus obtain the IP address that way. How long is the DHCP lease for those computers? If its long enough then you can reasonably assume that the IPs aren't going to change, and only ask the user if you can't connect with the 'typical' IP.

Great thinking about the length of the lease for DHCP. Two out of the three users are on laptops that frequently unplug and go. Otherwise it would make life easier.

pcAnywhere is not a bad idea. Definitely worth looking into. Thanks!

 

[bex0rs]

A cleaner and more secure option:

Use the "Listening VNC Viewer" on your end, and have the users behind the router initiate the VNC session to your client (which will be running in a "server" mode). From the users' point of view, this is a simple outbound connection which will avoid the hassles of port forwarding and internal IP tracking.