Joey Officer wrote:
<sigh> If you want to use the ssh on your firewall, just tell it to directly connect to your internal VNC box (assuming your internal network is trusted, and you don't *REALLY* need to encrypt stuff between internal machines and your firewall):ok, here is what I've done, and it works, although its questionable if this is the most efficient.from the windows box (remote) putty -ssh -l root -L 5900:leaf.public.ip:5905 leaf.public.ip ## where 5900 is display :0 and 5905 is diplay :5 then from the leaf box ssh -l harryk -p 24 -L 5905:192.168.3.200:5907 192.168.3.200 ## where 5905 is not the listening port on the leaf machine and forwarding to port 5900 and receiving data from 5907 I then run vncviewer to the leaf box like so (using window, but command line equiv.) vncviewer leaf.public.ip # which is technically vncviewer leaf.ip:5900->5905->intern.ip:5905->5907 this works and I guess two connections are better than one. If there is a more efficient way of doing this, I'm all ears. Thanks for the quick guidance everyone.
putty -ssh -l root -L 5900:VNC-Server-IP:5907 leaf.public.ip
or with the VNC server IP pulled in from above:
putty -ssh -l root -L 5900:192.168.3.200:5907 leaf.public.ip
NOTE: It is OK to have a private IP in your port-forwarding switch to ssh. As long as the remote end can resolve and connect to the IP or hostname provided, everything will work.
--
Charles Steinkuehler
[EMAIL PROTECTED]
-------------------------------------------------------
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
http://www.vasoftware.com
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html