vnc via ssh over internet
- Inicie sesión ou rexístrese para enviar comentarios
Hi have tried several times to make set-up that enables me to help e.g. my mother - whom I've successfully persuaded into using linux (for technical vs ease-of-use reasons it's for the time being not Trisquel though).
But I just fail every time. On paper the best solution would be something like gitso, but I just can't get it to work.
So, the best option seems to be vnc via ssh. I have searched and searched for a good guide to this but I can't find it. Can anyone help me to find a good guide that in detail explains how to set up such a connection?
So far I'm trying to get ssh to work. I can make it work on LAN, even without passphrase authentication (it connects automatically, which I find strange, i.e. insecure)
I've generated rsa keys on each machine but don't now how to use them correctly.
As I said I can connect via LAN but not WAN.
Any help?
I just use 'ssh -X' if I really need to run a remote graphical application. But it is really slow.
The first things you need are 1) an administrator account on the system and 2) the "ssh" package installed there. Then, assuming that the system is behind a NAT router (unfortunately the norm), you need to configure it (through its Web interface) so that 1) the computer is always given the same private IP address (you will need the MAC address; 'ip a' shows it) and 2) incoming connections on the SSH port you will use (22 by default) must be directed to that computer.
If the computer is sometimes connected by Ethernet, sometimes wireless, then there are two MAC addresses, you will define two permanent private IP addresses and direct incoming connected on two different ports to those two private IP addresses. You will then need your mother to tell you how she is currently connected to the Internet (or simply try the other port if your first attempt to connect by SSH failed). You will also need her to tell you what is the (public) IP address of her router because it is the one you will connect to and, unfortunately, it often is dynamic. Just put http://whatismyipaddress.com (or any other similar site) among her Web browser's bookmarks.
Have you done all that (which, by the way, is not GNU/Linux specific)? If so, do you get a shell if you type the following command (where LOGIN, PUBLIC_IP_ADDRESS and PORT must be changed to the appropriate values) from your system (to connect to your mother's)?
$ ssh LOGIN@PUBLIC_IP_ADDRESS:PORT
Thanks. Based on your answer, I've started this wiki: https://trisquel.info/en/wiki/remote-desktop-over-internet
If you have comment and time please edit the wiki or write to me - then I'll edit.
The NAT router must only be configured on the server side. It would be good to have three manuals. A first manual that would focus on configuring a NAT server so that a server behind it can be contacted. The fundamental problem is: there are as many configuration interfaces as there are NAT routers. Then, a second manual on SSH. It would reference the first manual in cases it is necessary, i.e., when the server is behind a NAT. And, finally, a manual on VNC to get a remote desktop within the local network (easy, no need for SSH nor for traversing a router) and, in another section, through Internet (reference to the previous manual to first get an SSH connection). But, again, graphical interfaces through the Internet are very slow. To the point of being unusable.
My wife use teamviewer for work. It's quite easy to set-up and the speed seems pretty ok. Isn't there some sort of solution like that?
I am a translator!
I know Jitsi provides the feature but when I tried it with a mate it did not work for me, maybe you'll have more luck.
I hear remmina is good. Never tried it though.
Jitsi is both a teamviewer and a skype replacement, with encryption.
I made both features work, but the setup is not straightforward, and not consistent/reliable.
First, there's no simple how-to.
You basically need to download it, check with gpg,
then install it.
Next, you need 2 xmpp accounts (kind of like emails).
You can create them on several servers around the world.
You can even host a server yourself, but I wonder if it's good for privacy (I remember Magic Banana telling me that a VPN server used only by myself is pointless, for example).
From there, it's just a matter of 2 clics (launching the video call, and asking the remote user to click on the tiny check that should be a huge button instead, in order to allow remote control a la teamviewer).
The problems that happened to me:
- no easy/simple explanation about how to make it work.
- an xmpp account created on the jappix server didn't work.
- both xmpp adresses created from the jitsi server don't work anymore brecause the server is closed, AFAIK.
- Jitsi online can be slow/not work at times because the server is probably too busy. Usually it's when you need it (during the internet's rush hours).
- plain and simple failure to work between a GNU/Linux machine and OSX (though this worked on another Linux machine. So yeah, unreliable).
That's what I remember.
The problems are mostly about XMPP accounts (and a lack of straightforward explanation from inside the software).
GNUbahn
have a look at
https://wiki.archlinux.org/index.php/Category:Remote_desktop
& Thanks for your contribution to the Trisquel wiki
A free teamviewer replacement is tuntox https://github.com/gjedeer/tuntox
With tuntox you forget to configure routers, nat even does not even care about the ip you have.
If you understand Spanish, I leave you a tutorial to make a tunnel for VNC.
https://diegocapeletti.wordpress.com/2016/12/24/soporte-remoto-vnc-con-tuntox/
- Inicie sesión ou rexístrese para enviar comentarios