Koozali.org: home of the SME Server
Legacy Forums => Experienced User Forum => Topic started by: jamon66 on April 10, 2002, 11:50:39 AM
-
I try to get the control of a machine running pc anywhere and located on my e-smith protected network.
first I don't know how I can open ports to make connection
second I don't know with wich adrress I connect to the machine
the e-smith adress 192.168.0.1, machine has 192.168.0.111
anyone has some help for my problem ?
thanx
-
You would connect to e-smith via a VPN (external ip address) and then connect to the machine ip address using pcanywhere.
Regards Duncan
-
Recent versions of PCAnywhere uses ports 5631 and 5632.
http://www.networkice.com/advice/Exploits/Ports/groups/PCanywhere/default.htm
Open these ports using the wonderful portforwarding rpm (thanx Mr. May):
http://myezserver.com/downloads/mitel/contrib/portforwarding-0.0.1/
-
can you be more specific !
connect via vpn ?
thanx
-
Perhaps this can help.
http://e-smith.org/bboard/read.php?f=3&i=13267&t=13267
Regards
Martin
-
Read the section in the user manual about PPTP.
http://www.e-smith.org/docs/manual/5.1/admin-remoteaccess.html
A vpn creates an encrypted network between you and the server across the internet. It will bypass your fire-wall because you connect to the PPTP component of e-smith.From here you will have access to all machines on the network (and can even browse their shares-albeit very slowly)
Regards Duncan
-
You don't NEED VPN or PPtP for this to work ... just use the portforwarding control panel once its installed (accessible via e-smith manager) to forward the PCAnywhere ports listed above to the appropriate machine on the local network. Fast & efficient.
-
As an alternative to PCAnywhere, you can try VNC. VNC has some cool features with decent performance. You can find VNC here:
http://www.uk.research.att.com/vnc/
To setup VNC, you will have to install the service on the machine you want to connect to and the viewer on the machine you want to connect from. The standard port to connect via VNC is 5900. To connect via a web browser, the port is 5800.
To forward ports using SME, consider installing the port forwarding utility provided by Darrell May. You can find it here:
http://myezserver.com/downloads/mitel/contrib/portforwarding-0.0.1/
It is easy to install and sets up a link on the server-manager page. All you need to input is the protocol (tcp or udp,) the port number and the destination IP address. All in all very easy.
-Dev
-
Just my 2 cents. I also suggest using VNC and port forwarding, but suggest using TIGHTvnc. It's more secure. Available at www.tightvnc.org
-
Just my 2 cents. I also suggest using VNC and port forwarding, but suggest using TIGHTvnc. It's more secure. Available at www.tightvnc.org
-
I would use a pptp connection and then connect thru the tunnel
port forwarding will send your data over the Internet with no encryption
check duncans post
-
I would go the PPTP route too - do you really want anybody on the internet to be able to try to connect to your pcanywhere box? I don't think I trust pcanywhere that much. In the past I've used SSH to port forward a VNC connection which also works ok.
-
If you're going to use PCAnywhere, it has its own encryption, selectable in rigor from inside the program. Why bother with pptp or any other complicated technology when it's already there for you?steve wrote:
>
> I would use a pptp connection and then connect thru the tunnel
> port forwarding will send your data over the Internet with no
> encryption
>
> check duncans post
-
>If you're going to use PCAnywhere, it has its own encryption, selectable in rigor >from inside the program. Why bother with pptp or any other complicated >technology when it's already there for you?steve wrote:
Why bother dowloading and installing an rpm when setting up a vpn is about as hard as falling of a chair?
-
Having used TightVNC and pcAnywhere on exactly the same hardware with broadband connections at both ends, I can tell you that (sad to say) pcAnywhere's performance is superior. And if you use its built-in encryption and choose strong passwords, I'd say its security is about as good as you're going to get. As for portforwarding being less secure than PPTP, consider that with portforwarding any hypothetical attacker is not attacking your server, just a workstation.
Which brings up another recommendation I've heard here & there ... if you're not hosting any webpages on your SME box, forward port 80 to a nonexistent local IP ... bye bye packets!
-
I use port forwarding to serve up pages from my e-smith machine through an ipcop firewall and vpns to administer my clients machines. Although i have used VNC i have never had any experience using pcAnywhere.
Although it sounds like it has a good security built in to it, i guess i would be concerned that if someone gained access to the workstation they have access to the LAN and perhaps more importantly the Server (just open a browser and use that wonderful microsoft save username and password "feature"). Without knowing the product, is their any way of confining pcAnywhere to the workstation?
I know that this is a fairly obscure scenario (especially if one maintains good security practices) but i am just throwing out a what if question.
Regards Duncan.
-
We are using Remote Administrator (www.radmin.com) utilizing the portforwarding panel. It works very well, good performance, allows for remote control, viewing, file transfer, reboot/shutdown.
-
How do you use the port forwarding feature when you have multiple machines running pcanywhere?
-
In later versions of Pcanywhere, the ports used are settable by the client on a per-host basis. Thus, your connection to host #1 might use the standard ports 5631 and 5632, and your connection to host#2 might use ports 5650 and 5651, for example. Port forward these port pairs to two different internal lan ip addresses and you have a connection to two different boxes - simultaneously.
Jeremy wrote:
>
> How do you use the port forwarding feature when you have
> multiple machines running pcanywhere?