From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.50) id 1EScgV-0006Ps-8H for garchives@archives.gentoo.org; Thu, 20 Oct 2005 15:50:27 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.5/8.13.5) with SMTP id j9KFkWiG010416; Thu, 20 Oct 2005 15:46:32 GMT Received: from xproxy.gmail.com (xproxy.gmail.com [66.249.82.195]) by robin.gentoo.org (8.13.5/8.13.5) with ESMTP id j9KFZJ0o015376 for ; Thu, 20 Oct 2005 15:35:19 GMT Received: by xproxy.gmail.com with SMTP id s10so172871wxc for ; Thu, 20 Oct 2005 08:37:54 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=LdjTKlMYd5HoDiy97m12lRjjtq6HXQ9mJfnTag8nIHB8yR8W6KxqlHx9+vAELHHmO1yvYgX5B1xAdHGeiXC/+C20aQcRTsG64+EjZ3lJ0OF+CdQC0ZmoLpcHZC1v2pw8kKSTVg7f+GwG40+76Ran1Gwz7swgCtdeYHLHSKCzxw0= Received: by 10.70.41.9 with SMTP id o9mr983419wxo; Thu, 20 Oct 2005 08:37:54 -0700 (PDT) Received: by 10.70.84.4 with HTTP; Thu, 20 Oct 2005 08:37:54 -0700 (PDT) Message-ID: <49bf44f10510200837k6bb6079ep3ca971f710682810@mail.gmail.com> Date: Thu, 20 Oct 2005 08:37:54 -0700 From: Grant To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Re: Reaching my network over the internet In-Reply-To: <43535C2C.1040006@djnauk.co.uk> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Disposition: inline References: <49bf44f10510160959n7407c97bj882784795fa2a9e8@mail.gmail.com> <200510161313.34724.john@jolet.net> <4352BBA8.9090707@djnauk.co.uk> <200510161932.05434.john@jolet.net> <43535C2C.1040006@djnauk.co.uk> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by robin.gentoo.org id j9KFZJ0o015376 X-Archives-Salt: a524783b-4368-42a2-ba17-3e164ffe76a0 X-Archives-Hash: 9fb4440b9904e78efe711847b7bcee3b > >>Why do though all the hassle of setting up a VPN when you can use SSH to > >>provide a secure tunnel into the network and use that instead? Works > >>fine for me. > >> > >># ssh -L5900:hostname:5900 username@hostname.tld > >># vncviewer localhost:0 > > > > Okay, now show me the instance where you want box->internet->box->vnc server. > > That does provide a tunnel between two boxes. It's quick and simple to > setup and can be used by any ssh client, regardless of the system. > Whether you're on Unix or Linux. You can even do it using Windows using > PuTTY. > > It's good to know in case if you need access but don't have a box that > can't do VPN, or there's a problem with the VPN. > > If you want to open it up for some reason to another box, you can use > the gateway switch (-g) and SSH will listed to all incoming connections > on that port on the remote computer. > > # ssh -g -L5900:remote:5900 username@server:port > > > If you set up openvpn on your ssh server, you easily can tunnel across it. > > Doing that with ssh would add another tunnel. Takes 5 minutes to set up. > > I'm not disagreeing with you, but a VPN can add a whole level of > complexity and setup, whereas if you just want to remotely access a VNC > server across the Internet, SSH works great and has added security built in. > > If you want to access more than VPN, i.e. SMB, or need the remote > computer to 'appear' on the local network for some reason, VPN is fine - > go ahead and use it. > > KISS - keep it short and simple. > > -- > Jonathan Wright ~ mail at djnauk.co.uk Ok, thanks for the help everyone! - Grant -- gentoo-user@gentoo.org mailing list