Remote desktop over firewall with not static IP

[Techknowledge]

Dears,

I am connected to the internet via Wimax technology and just learnt that my IP is not public (whenever I use a service such as whatismyip, I get the IP of not my modem/router but rather the ISP). I would like to know how can I enable remote desktop (I believe it goes over port 3389) to my machine over the firewall (or over such a setup I am in).

Possible solution is to use remote desktop over a SSL (port 443) but even if I change my listening port of RDP to 443, how can I connect externally if my IP is not public.

Some people suggested using VPN, but again, with a VPN free available like OpenVPN, what will be the IP that I should use to give externally to access my local machine running Remote desktop.

Thank you for clarity.

 

[lif_andi]

Are you sure your routers/modem external IP is not a routable address? Didn't know IPv4 addresses (or lack of) were actually starting to break things. Only thing I can think of is to talk to your ISP, and see what they say.

 

[Techknowledge]

My routers ip address is 10.X.X.X and my external IP (the one I can get when I use whatismyip) is something like 5.X.X.X . I believe the later is an IP of my ISP and the former is my routers IP. What does this mean?

 

[ch33zw1z]

Kind of a shitty scenario for you. Not having your WAN IP limits what you can do. And I assume you don't have access to port rules of any kind.

Does your ISP block or allow all ports?
Does your ISP provide a list of what ports are open?

Try something like TeamViewer for a quick fix. I actually prefer it to RDP for remote access. SSL Encrypted, goes over port 80, you can lock it down pretty good so no one else can get in.

 

[imagoon]

It is pretty common to see commercial NAT in the wireless space. You would need to use something like logmein since it connects to a service for you. When I was using the modems for construction site service I had to pay extra for a static and route-able IP.

 

[DnetMHZ]

another vote for logmein.

 

[lif_andi]

Agree with LogmeIn, its good.

 

[Techknowledge]

In your situation, normal Remote Desktop is not going to work. Logmein or Gotomypc (I prefer Logmein) are your best choices. They will let you connect to your home computer regardless of your ISP or IP address.

That's exactly what I wish to know. How come Logmein or GoToMyPC works, while other solutions don't. What technique or technology are they using? If I have a private IP, and my router doesn't do the NATTing but rather it is done by my mobile carrier which I have no control, then how does logmein or GoToMyPC get to my internal PC. Isn't communication IP to IP, and how do they know my internal IP.

That's the question I wish to learn 🙂

 

[imagoon]

Logmein or gotomypc use a public server to initiate and manage the connection. In logmein it is roughly: Logmein Client opens a connection to the Logmein server and then sits and waits. Remote user wants to connect-> Connecting users client sends a connection to the logmein server from IP x.x.x.x port y. Logmein client sees connection request directing it to connect to x.x.x.x port y. Logmein Client reaches out to that IP and port. Since the connecting client opened the port, the NAT rule gets built and allows the clients to connect.

It is a big dance of connections to get the NAT rules built.

 

[JackMDS]

Any service that has active software that is installed on your computer can transmit out and help in providing the service intended.

That is why products like LogMeIn, Team Viewer, etc. are the solution to your issue, they run local app on your computer and provide the connection's info to the Online service.

Why?

Because in most cases Firewall and other security measures are geared toward Blocking unwanted traffic from the Internet to your Network while apps that are on your Network are allowed to initiating going out to the Internet.

Team Viewer has elaborate site with all the info and free software. read it and give it a try.

http://www.teamviewer.com/en/index.aspx




😎