From owner-freebsd-questions@FreeBSD.ORG Wed Jul 21 21:22:52 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 95A3F16A4CE for ; Wed, 21 Jul 2004 21:22:52 +0000 (GMT) Received: from rosesmtp02.adp.com (rosesmtp02.adp.com [170.146.91.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4550A43D39 for ; Wed, 21 Jul 2004 21:22:52 +0000 (GMT) (envelope-from thomas_knight@adp.com) Received: from rosemms02.tw.adp.com ([192.168.100.53]) by rosesmtp02.adp.com with Microsoft SMTPSVC(5.0.2195.6713); Wed, 21 Jul 2004 17:22:51 -0400 Received: from 192.168.100.14 by rosemms02.tw.adp.com with SMTP ( Tumbleweed MMS SMTP Relay (MMS v5.6.2)); Wed, 21 Jul 2004 17:22:46 -0400 X-Server-Uuid: C1AF40A8-8026-4479-A29E-3A5B974B0AC3 Received: from rosesmtpcf01.nj.adp.com(192.168.100.17) by rosesmtpvs03.nj.adp.com via csmap id 1306; Wed, 21 Jul 2004 17:22:46 -0400 (EDT) Received: from ([10.1.102.50]) by rosesmtpf01.nj.adp.com with ESMTP id KP-TRMF8.6298170; Wed, 21 Jul 2004 17:21:21 -0400 Received: by ROSEEXCHC3 with Internet Mail Service (5.5.2657.72) id ; Wed, 21 Jul 2004 17:24:32 -0400 Message-ID: From: Thomas_Knight@adp.com To: freebsd-questions@freebsd.org Date: Wed, 21 Jul 2004 17:24:33 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2657.72) X-WSS-ID: 6CE0012C1L8659529-01-01 Content-Type: text/plain Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 21 Jul 2004 21:22:51.0693 (UTC) FILETIME=[E117C5D0:01C46F68] cc: Scott@isdr.net Subject: RE: VNC on different port X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 Jul 2004 21:22:52 -0000 How would I set up the encrypted port tunneling? Thomas G. Knight ADP - Data Center Team thomas_knight@adp.com (801) 956-7449 Don't worry if you're a kleptomaniac, you can always take something for it. -- Unknown -----Original Message----- From: Bill Moran [mailto:wmoran@potentialtech.com] Sent: Wednesday, July 21, 2004 1:59 PM To: Thomas_Knight@adp.com Cc: freebsd-questions@freebsd.org; Scott@isdr.net Subject: Re: VNC on different port Thomas_Knight@adp.com wrote: > My configuration is as follows: > > ------- ----------- ----------------- ------ > | VNC | --- --- | FreeBSD | --- --- | Work Firewall | --- --- | ME | > ------- ----------- ----------------- ------ > > I am trying to redirect ports so I can get out through my works firewall > into my VNC Server. I can get it to work on port 8080 but not on 80 or 20 or > 21. My work only allows 20, 21, 22, 80 through the firewall. Please see the > example below. > > This does work: > redirect_port tcp 10.0.3.21:5900 166.70.126.172:8080 > This does not work: > redirect_port tcp 10.0.3.21:5900 166.70.126.172:80 > > Any one have any idea's? If your work uses a transparent proxy for port 80, it's going to see the VNC traffic as invalid HTTP data and probably mangle it or drop it. You'd actually be better off using ssh to do encrypted port tunnelling, since your firewall allows it already. Running VNC unencrypted across the Internet is dangerous. Either way, try one of the other available ports. Port 22 unlikely to be proxied in any case. -- Bill Moran Potential Technologies http://www.potentialtech.com