Topic: I need to get some who off remote access working...

[beeboob]

I need to get some who off remote access working.

I am trying to get VNC to work. From home to Office

I have trying to read many forum treads, google and so on but not get it working. Any many hours, working whit the computer.

When we use MS Server. We can get i working. But we can not afford are upgrade. It is to expensive to are construct company to make are upgrade. I have test ubuntu Dapper and now it is so good, so we can use it to the Office PC. But we still missing something on the server site.

---------------------------

My setup.
Home PC1 Ubuntu dapper.
Home PC2 WinXp
Home Server SME 7 pre1. Port forward 5800 + 5900 to Home PC 1.
ISP
Office Server SME 7 pre1. Port forward 5800 + 5900 to Office PC 1 and are working remote SSH from Home PC 1
Office PC1 Win2000. Install TihgtVNC

-----------------------------

1. So can i get acces to ibay?
2. Get acces to server-manager
3. Get control off the office PC

What i also have tried.

I din't now where i have to make change so i can do are loging whit:

vncviewer -via <user>@<remote_ip> -truecolour -geometry 1024x768 localhost:0
vncviewer -via <user>@<remote_ip> -truecolour -geometry 1024x768 localhost:5900

In Ubuntu i have try:
Gnome-RDP but get time out

Whit PPTP Client i get:

pptpconfig: debug information dump begins
WARNING: security sensitive information follows
pptpconfig 1.2 2004/06/19 08:57:15
# pppd --version
pppd version 2.4.4b1
# uname -a
Linux pc-01 2.6.15-20-386 #1 PREEMPT Tue Apr 4 17:48:51 UTC 2006 i686 GNU/Linux
# grep mppe /proc/modules
# modinfo ppp_mppe
filename:       /lib/modules/2.6.15-20-386/kernel/drivers/net/ppp_mppe.ko
author:         Frank Cusack <fcusack@fcusack.com>
description:    Point-to-Point Protocol Microsoft Point-to-Point Encryption support
license:        Dual BSD/GPL
alias:          ppp-compress-18
version:        1.0.2
vermagic:       2.6.15-20-386 preempt 486 gcc-4.0
depends:        ppp_generic
srcversion:     6B88E623CA7C4D7FE2F11FA
Array
(
    [name] => <website>
    [server] => <remote_ip>
    [domain] =>
    [username] => <user>
    [password] => (hidden by pptpconfig)
    [pppd-options] =>
    [pptp-options] =>
    [resolv] =>
    [dns-options] =>
    [routing] => routing_client_to_lan
    [usepeerdns] => 1
    [require-mppe] => 1
    [nomppe-40] =>
    [nomppe-128] =>
    [refuse-eap] =>
    [mppe-stateful] =>
    [autostart] =>
    [iconify] =>
    [persist] =>
    [debug] => 1
    [client-to-lan] => a:0:{}
)
# route -n (before pppd)
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.116.0   0.0.0.0         255.255.255.0   U     0      0        0 eth0
0.0.0.0         192.168.116.1   0.0.0.0         UG    0      0        0 eth0
pptpconfig: debug information dump ends, starting pppd
pppd options in effect:
debug      # (from /etc/ppp/peers/<website>)
updetach      # (from command line)
logfd 1      # (from command line)
linkname <website>      # (from /etc/ppp/peers/<website>)
dump      # (from /etc/ppp/peers/<website>)
noauth      # (from /etc/ppp/options.pptp)
refuse-chap      # (from /etc/ppp/options.pptp)
refuse-mschap      # (from /etc/ppp/options.pptp)
refuse-eap      # (from /etc/ppp/options.pptp)
name jn      # (from /etc/ppp/peers/<website>)
remotename <website>      # (from /etc/ppp/peers/<website>)
      # (from /etc/p

Can any help me..

[beeboob]

I am verly get stuck in it, So i hope for some help

[Jáder]

My setup.
Home PC1 Ubuntu dapper.
Home PC2 WinXp
Home Server SME 7 pre1. Port forward 5800 + 5900 to Home PC 1.
ISP
Office Server SME 7 pre1. Port forward 5800 + 5900 to Office PC 1 and are working remote SSH from Home PC 1
Office PC1 Win2000. Install TihgtVNC

-----------------------------

1. So can i get acces to ibay?
2. Get acces to server-manager
3. Get control off the office PC

Hi

Let's start from beggining.
On your office, you have a security problem: port 5800 and 5900 opened w/o need them that way.
If you've using SSH from Home PC1 to Office you COULD do tunnels for VNC and have no more 5800/5900 port opened.
Because you have SSH working this way is 100% garanteed to work.

Q1: ibay access
R1: To do this you need to have:
       a) a VPN tunnel opened and so use SMB to map a drive (VERY SLOW)
OR
       b) HTTP access enabled on that (all?) ibay
OR
       c) FTP access enable on your server  (WARNING: INSECURE!!!)
To help you more I'll need more info about what is "access"... what do you want to get from there? Files ? http content? ...


Q2: To have Server-manager access you can:
a) put your office IP as local network on you home SME
OR
b) again use SSH + tunnels
OR
c) open a VPN from office to home and open it normally

I prefer to use tunnels... allways. It's a simple/fast way.
But put office IP on local networks it's a great way if you have just one office location w/fixed IP.

3) Control of PCs
Again: use VNC over SSH tunnels (allways same answer isn't)
Why? SSH is secure...

BTW: to access ibay data from elsewhere there is also a webDAV option. But I have no tryed it yet.

If you have more questions, please answers.
To discover how to tunnel VNC over SSH, please use Google and if any doubt remain then ask. Putty is a very free Windows client to SSH.

[beeboob]

Many thanks, Very nice answer... Now i was geting must more usefull information..

Ok my communication skills is not so good...

But i want to be allowed to get my files on are ibay. So that i can working whit them at home.

But i not sure whit HTTP access or FTP acces. FTP only to thoes Ibays that, is "websites"

Also what i going wrong for me. Is

When i am in are shell and make sudo ssh Office SME Server. Who do i make that VPN tunnel. IS it.

Home PC --> Office SME -->Office PC

or

Home PC --> Office PC

I now then Lan IP off the Office pc.

Bu ti get stuck...

[beeboob]

I forget are very important thing..

I have access to server-manager via ssh

[Jáder]

But i want to be allowed to get my files on are ibay. So that i can working whit them at home.

I suggest you try to use WINSCP to do that. You can open the file directly on other server without even copy to your side.

When i am in are shell and make sudo ssh Office SME Server. Who do i make that VPN tunnel. IS it.
Home PC --> Office SME -->Office PC
or
Home PC --> Office PC
I now then Lan IP off the Office pc.

Sorry I do not understood what do you mean.


I think you´d like to control a remote PC from your PC going to internet.
I do this by using SSH tunnels.
I create a tunnel from local port 10100  to destination 192.168.10.1:5900 (note that 10101 means: 10 = 3rd group of destination IP address, 1 = 4rd group of destination IP address, 00 = port 59xx)
so 10200, would be to 192.168.10.2:5900
and 10300 would be to 192.168.10.3:5900 ...

If you like, you could call me tomorow morning at skype (jader.marasca) or gtalk (jader.marasca). I´ll be online. I´m sorry but my english isn´t  THAT good. I also can talk Portuguese (my primary lang), some spanish and a few Italian.

Jáder

[beeboob]

Many thanks, Thats very nice off you. But i am in meeting all day. (business day) And i am first home again saturday..

But do you want me to forward some port from

Home Sme server -- >> Home PC1

and

Office PC sercer -- >> Office PC 1

I also have to dobbelt tjek my Office PC VNC info. Mybe there is something i have do wrong.

[MSmith]

The simplest way to accomplish this is to login to your server via PPTP VPN, then use VNC or Remote Desktop to your INTERNAL private LAN address.

[beeboob]

And the INTERNAL private LAN adress is the Office PC LAN Ip?

But to be sure,, When i have make the PPTP login i go to are shell and type what??

[MSmith]

All right, I will expand on my answer a bit.  You will first need to set up your SME user to allow VPN access; this is set in each user's individual properties.  You will also need to allow PPTP access from the "Remote Access" panel of Server Manager.  Then, the remote machine will establish a PPTP VPN connection to your network's external IP address.  This is easy if you have a static IP address but you can use a service such as dyndns.org if you don't have a static IP.  Once the PPTP connection is established and OK, connect via VNC or Remote Desktop to the machine on the LAN at its internal IP address, for instance 192.168.0.101 if your network uses 192.168.0.x addresses.  I use this successfully every single day; it works!