1 |
Harry Putnam wrote: |
2 |
> David Blamire-Brown <david@××××××××××××××××.uk> writes: |
3 |
> |
4 |
>> I did this a while back and I got it working by tunnelling via SSH |
5 |
>> (using putty on windows). But I can't remember the exact details |
6 |
>> off the top of my head. It may be worth googling that set-up. I seem |
7 |
>> to remember thinking it felt like a kludge and I can't quite |
8 |
>> remember why I ended up doing it, but I do remember that it worked. |
9 |
> |
10 |
> Well at least that sounds promising. I did see mention of that in |
11 |
> some of my google searches but I wondered, If I had to use ssh, why |
12 |
> wouldn't I just pull the X session on linux across with ssh alone. |
13 |
> And forget about VNC. |
14 |
|
15 |
Session persistence. [1] With VNC I can create a full desktop session (I |
16 |
use Fluxbox because it's lightweight) and connect to it as needed from |
17 |
any system with network access. This is great for my IM app. I lock my |
18 |
firewall rules down to allow VNC only from localhost and ssh tunnel all |
19 |
my connections (even on the LAN) because VNC's auth scheme is dreadfully |
20 |
insecure. |
21 |
|
22 |
> I think I've heard that can be done....I think I may have even done it |
23 |
> sometime way back, but VNC is so easy the other direction it seems it |
24 |
> should be just as easy connecting windows vnc client to gentoo vnc |
25 |
> server. |
26 |
> |
27 |
> For some reason the vnc server appears not to have any debug or |
28 |
> verbose switches. But not sure even if it did, since it appears the |
29 |
> connection is simply rejected, if that would help. |
30 |
> |
31 |
> I'd like to see some log info as to why the connection is rejected. |
32 |
|
33 |
How are you starting TightVNC from Linux? If you use something like |
34 |
`vncserver :1` then you should get lots of info in ~/.vnc/`uname |
35 |
-n`:1.log . This should provide plenty of info/debug info for you. |
36 |
|
37 |
I'd start by starting the VNC server and making sure that the log file |
38 |
indicates it started correctly, which should look like [2]. Then try to |
39 |
connect from a remote host; if you get a connection refused message then |
40 |
chances are good you have a firewall problem, so make sure the proper |
41 |
port is open (5901 for :1, or 5801 via the java http applet.) Try nmap |
42 |
from the Windows host to verify port status if you're unsure. I've |
43 |
included a connection log sample at [3]. |
44 |
|
45 |
[1]: You could look into NoMachine's NX server (or the GPL-flavor of |
46 |
this project) as well for the persistent execution benefit, but I've had |
47 |
bad luck with NX sessions terminating on me. Plus you can't resume an NX |
48 |
you start under Linux on a Windows host or vise-versa, so it's not as |
49 |
useful to me as VNC is. YMMV. |
50 |
|
51 |
[2]: Sample VNC session startup log segment: |
52 |
20/07/08 23:59:17 Xvnc version TightVNC-1.3.9 |
53 |
20/07/08 23:59:17 Copyright (C) 2000-2007 TightVNC Group |
54 |
20/07/08 23:59:17 Copyright (C) 1999 AT&T Laboratories Cambridge |
55 |
20/07/08 23:59:17 All Rights Reserved. |
56 |
20/07/08 23:59:17 See http://www.tightvnc.com/ for information on TightVNC |
57 |
20/07/08 23:59:17 Desktop name 'X' (seraph:1) |
58 |
20/07/08 23:59:17 Protocol versions supported: 3.3, 3.7, 3.8, 3.7t, 3.8t |
59 |
20/07/08 23:59:17 Listening for VNC connections on TCP port 5901 |
60 |
20/07/08 23:59:17 Listening for HTTP connections on TCP port 5801 |
61 |
20/07/08 23:59:17 URL http://seraph:5801 |
62 |
xrdb: No such file or directory |
63 |
xrdb: can't open file '/home/josh/.Xresources' |
64 |
BScreen::BScreen: managing screen 0 using visual 0x22, depth 24 |
65 |
Xlib: extension "RANDR" missing on display ":1.0". |
66 |
|
67 |
[3]: Sample VNC connection log segment (this connection initiated from |
68 |
127.0.0.1, the VNC server's localhost address): |
69 |
20/07/08 23:59:24 Got connection from client 127.0.0.1 |
70 |
20/07/08 23:59:24 Using protocol version 3.8 |
71 |
20/07/08 23:59:24 Enabling TightVNC protocol extensions |
72 |
20/07/08 23:59:49 Full-control authentication passed by 127.0.0.1 |
73 |
20/07/08 23:59:49 Pixel format for client 127.0.0.1: |
74 |
20/07/08 23:59:49 32 bpp, depth 24, little endian |
75 |
20/07/08 23:59:49 true colour: max r 255 g 255 b 255, shift r 16 g 8 b 0 |
76 |
20/07/08 23:59:49 no translation needed |
77 |
20/07/08 23:59:49 Using tight encoding for client 127.0.0.1 |
78 |
20/07/08 23:59:49 Using image quality level 6 for client 127.0.0.1 |
79 |
20/07/08 23:59:49 Enabling X-style cursor updates for client 127.0.0.1 |
80 |
20/07/08 23:59:49 Enabling cursor position updates for client 127.0.0.1 |
81 |
20/07/08 23:59:49 Enabling LastRect protocol extension for client 127.0.0.1 |
82 |
|
83 |
-- |
84 |
Josh |