VNC and two firewall - Matteo Manzinello

Linux Netfilter discussions
 help / color / mirror / Atom feed

From: Matteo Manzinello <mmanzinello@yahoo.it>
To: netfilter@lists.netfilter.org
Subject: VNC and two firewall
Date: Tue, 17 Jan 2006 22:24:16 +0100	[thread overview]
Message-ID: <43CD6080.2070003@yahoo.it> (raw)

Hello,
In a LAN I need to connect remotly with VNC to a client computer with 
Windows OS. The problem is that there are two firewalls or better one is 
a modem/router zyxel and then there is firewall on a server Linux (that 
it is used as backup file and mail server and other services) and after 
that there are the PC clients of the LAN:
INTERNET (WAN) -- ZYXEL/FIREWALL -- LINUX FIREWALL -- PC LAN
About the modem/router Zyxel I noticed that there are sets called "SUA" 
where you can set the IP and the port where to connect VNC. But the 
problems is with Linux in a generic LAN. Where I have a Linux machine 
connect to Internet I have these rules:
iptables -t nat -A PREROUTING -i ippp0 -p tcp -m tcp --dport 5900 -j 
DNAT --to-destination 192.168.0.2:5900
iptables -A FORWARD -i ippp0 -p tcp --dport 5900 -m state  --state 
NEW,ESTABLISHED -j ACCEPT

so everything works. Do you think it is enought to leave open the ports 
of the Firework Zyxel (5900) and then to set the rules with iptables on 
Linux?

Thanks a lot!
Take care

                 reply	other threads:[~2006-01-17 21:24 UTC|newest]

Thread overview: [no followups] expand[flat|nested]  mbox.gz  Atom feed

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=43CD6080.2070003@yahoo.it \
    --to=mmanzinello@yahoo.it \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox