VNC and VPN

[Matblack]

Can anyone give me a step by step guide to VPNing into my home machine and contolling it via VNC?

I know a few of you are doing this and with Virgin changing their traffic shaping policy it would be useful to kick off downloads during the day

Thanks

MB

[Daz]

If you're using an XP or above machine, then use Remote Desktop, it's much more bareable over a WAN link. Firstly, does your router have any VPN server functionality, and if not, are you sure it support VPN pass-through?

[Matblack]

Seems to support it, its a WRT54GS but looking up VPN and WRT54GS on Google doesn't look promising :/

http://www.google.co.uk/search?hl=en&q=WRT54GS+vpn&meta=

MB

[Daz]

Windows XP has the ability to answer 1 incoming VPN connection, what you need to setup is your router passing the packets properly internally. Now, it's not as simple as a basic port mapping. While port 1723 does need to be mapped to your XP box, GRE (IP protocol 47) needs to be mapped also, and this is where a lot of consumer grade kit falls short.

Ideally, in your forwarding options you want to select a pre-configured option for PPTP VPN's. If there isn't one you're likely out of luck. Netgear's in particular were a bitch for this, even when they supposedly fixed the GRE mapping, it still didnt work for a firmware release or two. I'm not sure how Linksys fair, so suck it and see I guess.

[edit] To setup the VPN server side on XP, go to network connection, create a new connection, advanced connection, accept incoming connection, dont add a device, allow virtual private connection, allow your own user account, leave the protocols alone, click finish.

Should also say of course your router/proxy at work must allow the connection through, which if it's been setup by a seasoned techie, it shouldn't.

[Mark]

Quote:

Originally Posted by Daz

Should also say of course your router/proxy at work must allow the connection through, which if it's been setup by a seasoned techie, it shouldn't.

This is the key point. I spent a few days trying to troubleshoot a VPN connection I'd set up only to discover this. However, they didn't block SSH (as it's a point-to-point rather than network-to-network protocol) so I still have a way in, though I've yet to be able to figure out a way to tunnel Remote Desktop over SSH (I'm sure there is one).

[Desmo]

Why do you need a VPN? Just connect to the VNC server and fire away. OK, so it's not as secure but if you just want to start a couple of downloads and then do that and disconnect.

[Mark]

As a purely personal opinion, it's the security that would bother me. VNC is well-known for being vulnerable and I'd never have it on an internet-facing connection.

[Matblack]

Now I am confused :/

I have my media machine connected to the net via the Linksys router and the cable modem, whats the best way to 'dial' in.

Its only running normal XP not pro and I don't have pro at work.

MB

[Dymetrie]

I run VNC on Phoenix and connect to it from work.

Pretty simple, download and install VNC server, set password and desired port number (defaults to 5900) forward the port on your router...

I use the standalone .exe at work as I can't install stuff, just double click, enter IP and port, enter password, skive off work

[Matblack]

That sounds ideal, right now I use VNC locally to operate the downstairs machine without needing to switch the projector on, so I just need to open the port and write down my IP address, that shouldn't change to often I presume?

MB