> My first question is, is this possible, I have only one > public IP address, > and > I am using nat to hide my internal network, and I want to connect to a > machine with vnc on that with private ip > And then run my web server and ftp server inside that > network. > So my question is how can I connect to vnc host from outside > world to the > machine having private ip behind my nat.
Port-Forwarding ist the easiest way but on the other hand the most insecure. One solution - SSH-Tunneling - has been mentioned already. The other solution - if your gate allows this - could be IPSEC/VPN. If you get connected to your gate from outside you may access all the internal machines without nat and portforwarding but keeping your connection encrypted. Ok, for one host and one service this may be a little bit oversized and for public services such as http this wont be a good solution of course. Regards Boris Koslowski
