Using VNC through a PuTTY SSH tunnel

Similar documents
Setting Up VNC, SSH Tunnels, and RDP

VHA Innovations Program Future Technology Laboratory. Linux Workstation Remote Desktop Connection Manual

CONNECTING TO DEPARTMENT OF COMPUTER SCIENCE SERVERS BOTH FROM ON AND OFF CAMPUS USING TUNNELING, PuTTY, AND VNC Client Utilities

Author A.Kishore/Sachin VNC Background

You can find a lot of great resources on the internet for setting up VNC on Linux!

How. to: Connect Remotely. Updated by

Visualization Cluster Getting Started

Remote Access to Unix Machines

Adafruit's Raspberry Pi Lesson 7. Remote Control with VNC

Securing Windows Remote Desktop with CopSSH

Securing Windows Remote Desktop with CopSSH

How to Use Remote Desktop over a Secure Connection (SSH)

MATLAB on EC2 Instructions Guide

RSA SecurID Token User Guide February 12, 2015

VeloView Offline GUI

EMBnet Norway User introduction pack (instructions and services overview) George Magklaras Head Systems Engineer Version 3.

Advanced Network and System Administration

SSL VPN Setup for Windows

Tunnel VNC through SSH Tutorial Version 1

How to Tunnel Remote Desktop Through SSH on a Windows Computer

Miami University RedHawk Cluster Connecting to the Cluster Using Windows

Getting the most out of your new Aalto workstation An Aalto IT guide for personnel migrating to the new Aalto workstation environment

WinSCP PuTTY as an alternative to F-Secure July 11, 2006

SSH and Basic Commands

Installing and Using No Machine to connect to the Redhawk Cluster. Mac version

Quick Connect. Overview. Client Instructions. LabTech

INSTALLING AN SSH / X-WINDOW ENVIRONMENT ON A WINDOWS PC. Nicholas Fitzkee Mississippi State University

Overview. Remote access and file transfer. SSH clients by platform. Logging in remotely

Remote Desktop In OpenSUSE 10.3

MobaXTerm: A good gnome-terminal like tabbed SSH client for Windows / Windows Putty Tabs Alternative

Tunnels and Redirectors

Tutorial Guide to the IS Unix Service

There s a variety of software that can be used, but the approach described here uses freely available Cygwin software: (1) Cygwin/X (2) Cygwin/openssh

Using WebVPN (webvpn.childrens.harvard.edu) to access shared and P drives, access , and use Remote Desktop

Installing and Configuring Remote Desktop Connection Client for Mac

SSH/VNC for Remote Windows Access

Using Virtual Machines

Installing an IBM Workplace/Portal Server on Linux

Remote PC Guide for Standalone PC Implementation

visionapp Remote Desktop 2010 (vrd 2010)

SSH Connections MACs the MAC XTerm application can be used to create an ssh connection, no utility is needed.

Mac OS X: INSTALLING TUNNELBLICK

Remote Administration

Savvius Insight Initial Configuration

Security Configuration Guide P/N Rev A05

Introduction to TightVNC. Installation. TightVNC for Windows: Installation and Getting Started. TightVNC Version 2.6 Copyright 2012 GlavSoft LLC.

1 Getting Started. Before you can connect to a network

Guide: Using Citrix for Home/ Office

Raspberry Pi Setup Tutorial

TELNET CLIENT 5.11 SSH SUPPORT

An Oracle White Paper July Oracle Linux and Oracle VM Remote Lab User Guide

How to Bypass Your Corporate Firewall Using SSH Tunneling

Vine Server. v3.1. Manual

PENN. Social Sciences Computing a division of SAS Computing. SAS Computing SSC. Remote Computing. John Marcotte Director of SSC.

The initial set up takes a few steps, but then each time you want to connect it is just a two set process.

NYU-Poly VLAB Introduction LAB 0

How to Tunnel Remote Desktop using SSH (Cygwin) for Windows XP (SP2)

To download and install directly to your phone

Parallels Remote Application Server

freesshd SFTP Server on Windows

UBC Digital Signage Service: CoolSign 5.0 Initial Set- up Guide

Quick Start Guide. Cerberus FTP is distributed in Canada through C&C Software. Visit us today at

Secure access to the DESY network using SSH

Contents. This document contains the following sections:

1 Basic Configuration of Cisco 2600 Router. Basic Configuration Cisco 2600 Router

There are many different ways in which we can connect to a remote machine over the Internet. These include (but are not limited to):

UW Computer Science and Engineering Starting UNIX X Clients From Windows XP. revised September Warren Jessop

Securing Remote Desktop for Windows XP

Initial Setup. How To Run A Mac Server:

How do I use Citrix Staff Remote Desktop

Extending Remote Desktop for Large Installations. Distributed Package Installs

OVERVIEW CODEMETER.

Accessing VirtualBox Guests from Host using SSH, WinSCP and Tunnelling

APPLICATION NOTE. How to build pylon applications for ARM

University of Wisconsin System Shared Financial System (SFS) PeopleTools 8.53 Client Setup Guide

Non-ThinManager Components

ACADEMIC TECHNOLOGY SUPPORT

Stealth OpenVPN and SSH Tunneling Over HTTPS

Getting Started with Oracle Data Mining on the Cloud

How to setup and use XViewer & XImpcert

FUJITSU Cloud IaaS Trusted Public S5 Connecting to a Virtual Machine (VM)

Overview The following instructions are to be used to download the Citrix Client to your PC and access the CVHP network via Citrix.

Lab 8.3.3b Configuring a Remote Router Using SSH

WIRELESS TRAINING SOLUTIONS. by vlogic, Inc. L a b 0.3 Remote Access Labs

Installing Microsoft Outlook on a Macintosh. This document explains how to download, install and configure Microsoft Outlook on a Macintosh.

Building your own Terminal server.

Guidance for IA DMM: Connecting Your Computer to FSU Video File Server

Export & Backup Guide

Interacting with Users

ASUS WL-5XX Series Wireless Router Internet Configuration. User s Guide

How do I Install and Configure MS Remote Desktop for the Haas Terminal Server on my Mac?

Secure File Transfer Protocol User Guide. Date Created: November 10, 2009 Date Updated: April 14, 2014 Version: 1.7

VCL Access. VCL provides access to Linux and Windows 7 Virtual Machines. Users will only see those images that they are authorized to access.

2 Advanced Session... Properties 3 Session profile... wizard. 5 Application... preferences. 3 ASCII / Binary... Transfer

Installation Guidelines (MySQL database & Archivists Toolkit client)

Setting up Kerberos, AFS, and Putty on Windows Vista/Windows 7

M2Web - Browser-Based Mobile Remote Access

Editing Locally and Using SFTP: the FileZilla-Sublime-Terminal Flow

Debug Failed to connect to server!

Transcription:

Using VNC through a PuTTY SSH tunnel Introduction So why would I want to do this? VNC is a powerful suite of tools that allows one to link and use a variety of platforms from almost any other platform. In the CIS department at RIT, VNC is most often used by students to access a Unix workstation via a virtual desktop from a Windows-based PC whether on- or off-campus. The problem is that it is inherently wide-open and not secure. In other words, almost anyone with some very basic skills can gain access to your VNC session and thus your account, particularly if the connection is outside the CIS subnet. The VNC password option is not secure despite what one might suspect. In the future, the security features might be upgraded, but they are very limited at this time. However, there is no reason to despair or buy something else. You simply need to create a secure environment to run VNC through. This is where the PuTTY toolkit or an alternative SSH toolkit comes into play. The purpose of this pseudo-tutorial is to walk through setting up a VNC session through a secure SSH tunnel using PuTTY. Such a tunnel can be setup when establishing a connection from a Unix or Mac platform to a different PC, Unix, or Mac platform, but is not directly covered in this document. The philosophy and general guidelines are appropriate, but different tools and commands are used. The bottom-line is that VNC can be used in a secure environment. Please do not open yourself or CIS s computer network to attacks. There is rarely a valid excuse for security laziness or ignorance. Step1: Get the latest version of PuTTY toolkit. It can be downloaded from a variety of sites, but http://www.sosdg.org/software.php is one option. Typically, Windows users select the PuTTY installer package. You may select a different SSH utility, but the secure tunnel setup will be different depending upon the SSH utility. Note that a lot of other neat utilities come with PuTTY and currently it is freeware for educational and personal use. Step 2: Get the VNC viewer from here http://www.realvnc.com/download.html. You can read more about VNC here http://www.realvnc.com/documentation.html. The documentation for beginners is pretty good, but you can get started with this simple tutorial. Step 3: Now for the fun part. The basic concept is that we want to create a secure SSH connection and tunnel to route the VNC server output through. Then we start the VNC server with instructions on which secure port to use (the one we just created). Locally, we then start the VNC viewer with instructions to connect to the other end of the tunnel. Below we shall walk through a simple example. Some of the steps (particularly

the PuTTY session setup) may not be necessary once you have completed them once and have saved the PuTTY session description. In this example we will setup an SSH connection to smith.cis.rit.edu and give it the session name smith (VNC). Launch PuTTY and type in the host name (smith.cis.rit.edu) and the session name (smith (VNC)) as shown below: Step 4: Now we need to set the SSH options to use compression and the SSH2 protocol. Select the SSH category on the left and ensure that these two options are selected.

Step 5: Next we will set up a tunnel from port 5923 on your computer to port 5923 on the smith.cis.rit.edu. (Note that you can select which port you want to set for either end and that your choice will alter the port numbers that you enter for starting the VNC server and viewer in the next section.) Step 6: Now you must save the session otherwise you'll need to do it all again next time you make a connection. Essentially, you have configured a SSH2 connection with a built-in secure tunnel to run VNC through. The next few steps will demonstrate how to establish and use that connection.

Step 7: Now we can begin to connect to smith.cis.rit.edu. Open the session and make a connection to the VNC server. If this is the first time that PuTTY has connected to smith.cis.rit.edu then you will be prompted whether you want to store the security keys/fingerprints. Select yes and continue. Now smith.cis.rit.edu will ask you for your CIS userid and password.

Step 8: Once you have logged in, you need to start the VNC server and attach it to the right port. To start the VNC server, type the command: vncserver :23 depth 24 geometry 1024x768 localhost For a detailed explanation, refer to the VNC documentation, but let s go through some of the above command structure. First the :23 is the port number that we created for the secure tunnel. The depth command sets the display to have 24 bit color. The geometry command is set for the local screen and usually is something that a user plays around with to suit their own needs. The -localhost option limits connections to only from the local host (smith in this case) and is usually only used when tunneling VNC sessions via a SSH. Also, note that if you have never used VNC from your CIS account, you will be prompted for a VNC password. This password must differ from your CIS account password. Please use similar care in choosing a VNC session password. The VNC password can be changed later using the command vncpasswd and following the prompts. Step 9: Now the VNC server is up and running. You need to run the VNC viewer installed on your local machine. For a Windows PC, run the VNC viewer and make a connection to localhost:5923. You should have a login prompt from the VNC server machine now.

Once you have logged in, your unix desktop should open and you can begin using it like you would if you were sitting down at the terminal. Note that one restriction is that VNC doesn t currently support programs (like bulldozer) which require opengl to run. Step 10 (optional): By the way, if you want to set the type of desktop that appears when you use the VNC server, you have to modify your ~/.vnc/xstartup file in your unix account. Here are a few options: (a) Gnome Desktop #!/bin/sh xrdb $HOME/.Xresources xsetroot -solid grey xterm -geometry 80x24+10+10 -ls -title "$VNCDESKTOP Desktop" & /usr/local/bin/gnome-session & (b) CDE Desktop #!/bin/sh xrdb $HOME/.Xresources xsetroot -solid grey xterm -geometry 80x24+10+10 -ls -title "$VNCDESKTOP Desktop" & /usr/dt/bin/xsession &

You may also choose to alias the vncserver command in your.cshrc file. You simply need to add a line like: alias vnc vncserver :23 depth 24 geometry 1024x768 localhost Now you only have to type vnc to start the VNC server. Step 11: Now for something very important. Even if you close the viewer window and the PuTTY session, the VNC server is still running. This can be useful if you want to return to your desktop exactly as it is and work on it later; however, in general, you need to shutdown the VNC server session. You do that by using the command: vncserver kill :23 Note that the port number is very important here. Also note that if you close the PuTTY window, the secure tunnel is closed and your VNC viewer will be disconnected from the VNC server. To reconnect, you simply start at Step 6 and skip Step 7. (The VNC server is still running if you didn t kill it.)

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information