On Wed, 2004-08-18 at 10:16, Chris Lee wrote:
Hi,
I fail to connect VNC Server inside the intranet, which look like it blocked
by Shorewall.
Here is the log:
Jan 1 08:00:00 8dgateway Shorewall:all2all:REJECT: IN= OUT=eth1 MAC= SRC=10.
0.18.254 DST=10.0.18.1 LEN=60 TOS=00 PREC=0x00
Dear Ronny,
Thanks. It working now!
Any hints for invalid log date?
Regards,
Chris Lee
---
SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media
100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33
Save 50%
On Wed, 2004-08-18 at 10:50, Chris Lee wrote:
Dear Ronny,
Thanks. It working now!
Any hints for invalid log date?
Regards,
Chris Lee
use date to check if your clock is correct,
if it's not then do
date MMDDhhmm (to set the system date)
hwclock --systohc (to store the correct time in
Hi!
it is not practical nor secure to have that kind of stuff
on a router/firewall.
I had myself that same idea about a year ago, on the purpose of
having only one tool for remote administration.
However, i came to the conclusion that SSH based login is much
more secure and easy to use.
So:
On Wed, 2004-04-14 at 12:43, Luis.F.Correia wrote:
Hi!
it is not practical nor secure to have that kind of stuff
on a router/firewall.
I had myself that same idea about a year ago, on the purpose of
having only one tool for remote administration.
However, i came to the conclusion
and deploy...
Jorn
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of
Luis.F.Correia
Sent: Wednesday, April 14, 2004 12:44 PM
To: [EMAIL PROTECTED]
Subject: RE: [leaf-user] VNC on Leaf
Hi!
it is not practical nor secure to have that kind of stuff
on a router
Hello Jørn,
I did some time ago. I made a LEAF package using the SVNCViewer viewer
based on SVGAlib. I do not know how it will work with current branches,
though. Unfortunatelly, since the LEAF web site is being reworked, I am
not able to let you know where to find the package... most probably
Darcy Parker wrote:
Good day Patrick and Lars,
As I am fairly new to this, I would appreciate a bit more help. I did read
the article above and a few others but I am not 100% sure that I am doing
everything correct.
Hi Darcy,
Trust me, you're not the only one who has encountered this..
On Monday 27 January 2003 02:40 am, Joey Officer wrote:
I've got my LEAF w/ SSH on port 22, an internal SSH server on port 24, and
vnc running on the internal server. I want to get to the vnc server
running on the internal ssh box but am not having luck. this is how it
looks
PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Lynn Avants
Sent: Monday, January 27, 2003 7:28 AM
To: [EMAIL PROTECTED]
Subject: Re: [leaf-user] VNC, SSH, port forward
On Monday 27 January 2003 02:40 am, Joey Officer wrote:
I've got my LEAF w/ SSH on port 22, an internal SSH server on port 24
on port 5901 and listening on port 5907.
I'll try that and post my findings as well.
thanks
joey
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Lynn Avants
Sent: Monday, January 27, 2003 7:28 AM
To: [EMAIL PROTECTED]
Subject: Re: [leaf
: Monday, January 27, 2003 8:20 AM
To: Joey Officer
Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: [leaf-user] VNC, SSH, port forward
I'm doing this.
I have leaf port forward port 22 to a Red Hat box running ssh. Then I use
plink to create the tunnel from the internet.
plink.exe -ssh jay
: Wednesday, October 23, 2002 11:23 PM
To: Karl Poglitsch
Cc: [EMAIL PROTECTED]
Subject: RE: [leaf-user] vnc no-go; hair = pulled
out
Hello,
Thanks again for your help. I finally have it
working.
Put the inter_servers statement one line worked
(didn't work with back-slashes
Message-
From: [EMAIL PROTECTED]
[mailto:leaf-user-admin;lists.sourceforge.net]On
Behalf Of Kache
Sent: Wednesday, October 23, 2002 11:23 PM
To: Karl Poglitsch
Cc: [EMAIL PROTECTED]
Subject: RE: [leaf-user] vnc no-go; hair = pulled
out
Hello,
Thanks again for your help. I
VERY nice,
better than the rest
IMHO.
KARL
-Original Message-
From: [EMAIL PROTECTED]
[mailto:leaf-user-admin;lists.sourceforge.net]On
Behalf Of Stephen Lee
Sent: Tuesday, October 22, 2002 4:55 AM
To: Kache
Cc: Leaf-user
Subject: Re: [leaf-user] vnc no-go; hair = pulled
out
/devel/cstein/files/diskimages/dachstein-CD/CD-Co
ntents/README.txt
enjoy...
-Original Message-
From: [EMAIL PROTECTED]
[mailto:leaf-user-admin;lists.sourceforge.net]On Behalf Of Kache
Sent: Thursday, October 24, 2002 2:56 PM
To: [EMAIL PROTECTED]
Subject: RE: [leaf-user] vnc no-go; hair
IMHO.
KARL
-Original Message-
From: [EMAIL PROTECTED]
[mailto:leaf-user-admin;lists.sourceforge.net]On
Behalf Of Stephen Lee
Sent: Tuesday, October 22, 2002 4:55 AM
To: Kache
Cc: Leaf-user
Subject: Re: [leaf-user] vnc no-go; hair = pulled
out
On Mon, 2002-10-21 at 22:15
On Mon, 2002-10-21 at 22:15, Kache wrote:
of four lines I need, two for each open port, all of
which will go in the /etc/network.conf. The two intern
ones would look something like
INTERN_SERVERS=tcp_${EXTERN_IP_vncstd_192.168.1.1_vncstd
Hello,
Thank you for your help. I did define 58xx as vncweb
and 59xx as vncstd in the services file. I need both
because I want to use the java client vnc viewer
through a web browser (58xx is for the weblet, 59xx is
for the standard vnc). I had no idea those had to be
on one line. I'm going to
Some quick feedback to the security-conscious hyperbole
about VNC that's flown across the list recently. In my experience,
it's not exactly true that VNC has very little in the way of
security. Some features it has (and I've used):
1. Via AuthHosts, you can specify which IP addresses
Thanks for posting a nice overview, Scott. Though I've used vnc a bit, I've
only used it on a small, safe LAN, so I haven't looked at the security
issues closely before. I wonder if you could clarify a couple of things.
First, when you write ...
3. Unlike telnet and others, the connection
Ray:
Good questions:
1. AFAIK, the VNC password login is a challenge/response style.
So the challenge, and the response, can be sniffed, but not
the plaintext password directly. The Phoss app (you can find
it at http://www.phenoelit.de/phoss/) can be used to attack
this
Brian -
Since VNC has little in the way of security, one option you might want to
consider running SSH on the LEAF machine and tunneling your VNC connections
through an SSH session. On my network, I use that method and it works
pretty well and allows me to reach any of the machines on my
If you want to run VNC servers on multiple intermal machines and want to
access them from outside then:
I do not remember exactly what default port VNC is running on. But assume
that is 5800. You have to portforwarding 2 ports on the external interface,
e.g. 5800 and 5801 to port 5800 on both
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Good morning,
We use VNC here to administer various machines, both here in the office
and at remote
sites. All I have done is to add to Charlse's scripts in network.conf and
ipfilters.
I originally copied the section used for the
Dean Moreton wrote:
Hi, im using a modified version of Eigersteinbeta 2 with a
pppoe package. What id like to achieve is to be able to
vnc into a machine on my internal network through my lrp
box from an external ip (i.e work). I take it this will
require some modifying of the ip ruleset
26 matches
Mail list logo