Using vncviewer through Sonicwall Soho2

[robphillips79]

I need to figure out how I can use a program called VNC Viewer from home, to access a computer in a closed network. Everything that goes into the router gets moved to the firewall, where access to the network is controlled there, obviously, but I'm a bit new to this stuff so it helps for me to write it all out.

Now here's where I'm a little unsure. In my soho2 firewall I can create a service called VNC which uses port 5900. I can then set up a rule that allows incoming port 5900 to route to one internal IP address. The problem is that there will be multiple users from the outside trying to access multiple computers on the inside. So how does this need to be set up?

Thanks for any advice.

 

[loup garou]

You need to either:
1) Edit the registry on each computer running VNCserver to tell vnc to listen on a different port and forward the appropriate ports to the appropriate machines in the router's setup.
2) Setup a vpn server/device of some sort. Once connected to the vpn, you can connect to any machine running a vncserver.

 

[robphillips79]

So if I have two machines in the closed network that run vnc server, and two computers in the outside world that run vncviewer, I have to specify which port to go to on the firewall, for instace 5900 for one, and 5901 for the other, and then forward each port to that particular computer in the closed network?

 

[loup garou]

Originally posted by: robphillips79
So if I have two machines in the closed network that run vnc server, and two computers in the outside world that run vncviewer, I have to specify which port to go to on the firewall, for instace 5900 for one, and 5901 for the other, and then forward each port to that particular computer in the closed network?

Exactly. You also need to make a registry edit on each computer to tell vncserver what port to listen on. I'll see if I can dig up an article on how to do this for you.

EDIT: Here you go.

 

[Southerner]

I wouldn't go opening ports in the firewall for it, as most of a VNC session isn't encrypted. I'd set up a VPN, so you could access each machine directly.

 

[robphillips79]

any idea on how I'd go about setting up a VPN?

 

[mboy]

is your Soho2 licensed for VPN? Probably has at least 1 license with it. Then you need as many copies of the sonicwall software client as you will need. If u need mutlitple licenses for both, it is going to cost you some decent $$$$.

 

[JackMDS]

Install VNC Server on each computer that need to be controlled and assign each computer VNC with it own port.

E.g., Computer 1 VNC port 5810, Computer 2 VNC port 5820, etc.

Open in the Firewall the needed ports to the corresponded computer.

From the remote start the Viewer and type the port number at the end of the IP it will go to the computer with the specific open port.

More details here: Ultr@VNC (Remote Control for your Network/Interent) - Installation, and Settings

Link to: How can I find My Home Personal Computer/Server on this "Huge" Internet World?

:thumbsup:

 

[Need4Speed]

Originally posted by: werk

Originally posted by: robphillips79
So if I have two machines in the closed network that run vnc server, and two computers in the outside world that run vncviewer, I have to specify which port to go to on the firewall, for instace 5900 for one, and 5901 for the other, and then forward each port to that particular computer in the closed network?

Exactly. You also need to make a registry edit on each computer to tell vncserver what port to listen on. I'll see if I can dig up an article on how to do this for you.

EDIT: Here you go.

no need for a reg edit...thic can be done throught the vnc server properties panel. maybe you have it confused with remote desktop, which will need a regedit

 

[Need4Speed]

Originally posted by: Southerner
I wouldn't go opening ports in the firewall for it, as most of a VNC session isn't encrypted. I'd set up a VPN, so you could access each machine directly.

could use a ssh tunnel with port forwarding to encrypt the traffic. then only one port on the firewall would have to be open, as the ssh deamon would be doing the port forwarding.

 

[loup garou]

Originally posted by: Need4Speed

Originally posted by: werk

Originally posted by: robphillips79
So if I have two machines in the closed network that run vnc server, and two computers in the outside world that run vncviewer, I have to specify which port to go to on the firewall, for instace 5900 for one, and 5901 for the other, and then forward each port to that particular computer in the closed network?

Exactly. You also need to make a registry edit on each computer to tell vncserver what port to listen on. I'll see if I can dig up an article on how to do this for you.

EDIT: Here you go.

no need for a reg edit...thic can be done throught the vnc server properties panel. maybe you have it confused with remote desktop, which will need a regedit

No kidding, I never realized that's what the display number meant. 🙂

 

[Need4Speed]

Originally posted by: werk

Originally posted by: Need4Speed

Originally posted by: werk

Originally posted by: robphillips79
So if I have two machines in the closed network that run vnc server, and two computers in the outside world that run vncviewer, I have to specify which port to go to on the firewall, for instace 5900 for one, and 5901 for the other, and then forward each port to that particular computer in the closed network?

Exactly. You also need to make a registry edit on each computer to tell vncserver what port to listen on. I'll see if I can dig up an article on how to do this for you.

EDIT: Here you go.

no need for a reg edit...thic can be done throught the vnc server properties panel. maybe you have it confused with remote desktop, which will need a regedit

No kidding, I never realized that's what the display number meant. 🙂

I guess you learn something new everday 🙂
for instance default is 5800/5900 on display 0
then display 1 would be 5801/5901 and so on and so on