Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
10-31-2009, 09:55 PM
|
#1
|
Member
Registered: Aug 2003
Posts: 426
Rep:
|
secure control of remote machines?
i posted earlier regarding ssh tunneling and the responses have
me rethinking my situation on a broader level.
i have a local network of seven mandriva linux boxes, one xp box, and
one mac pro. i'd like to be able to log in to this network from my
home and be able to remotely run applications, move files, and, generally,
administer all of these machines.
i currently have an ssh tunnel set up to give me vnc access to the mac
pro. i have the same capability with the xp box but i have to manually
access the router and change it to the box i want to access. in other
words, i can only access one machine at a time without manually changing
router settings at the remote location. this is, obviously, impractical.
i'd like to expand the current setup to give me access and control of
all of the machines.
what's the best way for me to set things up for secure remote desktop
access to this network and all its machines? vpn? ssh and vnc? not
having used vpn, does it allow me to do more than just move files
around? can i use it to run apps, see the desktop? links to tutorials
and how-to's appreciated.
thanks,
BabaG
|
|
|
10-31-2009, 10:11 PM
|
#2
|
Senior Member
Registered: Jan 2006
Posts: 4,363
Rep:
|
I would just access one main machine from home and then initiate another connection from that machine to all your other machines(local remote from your remote machine).
|
|
|
11-01-2009, 11:38 AM
|
#3
|
Member
Registered: Aug 2003
Posts: 426
Original Poster
Rep:
|
thanks lazlow.
once i've got the ssh connection to the remote 'master' machine as you suggest, do i need to use ssh or another secure methodology to connect to the other machines in the 'master's' local network? or will having that initial ssh connection take care of the security of the connection? for simplicity, i'd like to be able to just use vnc from the master to the others. fwiw, this is a small network i run and am, pretty much, the only user.
thanks,
BabaG
Last edited by babag; 11-01-2009 at 11:48 AM.
|
|
|
11-01-2009, 12:19 PM
|
#4
|
Senior Member
Registered: Jan 2006
Posts: 4,363
Rep:
|
Like most security calls, that is a judgment thing. If you are certain (enough) that your lan is secure (enough) then just vnc. If not (or in question) run vnc over ssh(or whatever).
|
|
|
11-01-2009, 07:15 PM
|
#5
|
Member
Registered: Aug 2003
Posts: 426
Original Poster
Rep:
|
thanks again lazlow.
i just can't figure out how, with my router already forwarding ssh port 22 to the master machine,
i would be able to use ssh to call another machine. they'd both be running through the same router
which is set up to forward port 22 to the master machine.
BabaG
Last edited by babag; 11-01-2009 at 07:17 PM.
|
|
|
11-01-2009, 07:32 PM
|
#6
|
Senior Member
Registered: Jan 2006
Posts: 4,363
Rep:
|
Your router will not need to forward another port. The second session will stay entirely on the local lan(local machine A to local machine B), the only external(wan) connection will be from machine A to your home. You will only be "seeing" machine B through machine A(which you are in turn seeing through you machine at home). You might think of it as seeing a photograph of another photograph.
|
|
|
All times are GMT -5. The time now is 06:16 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|