From owner-freebsd-questions@FreeBSD.ORG Fri Dec 19 11:26:29 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4ED2116A4CE for ; Fri, 19 Dec 2003 11:26:29 -0800 (PST) Received: from shaft.techsupport.co.uk (shaft.techsupport.co.uk [212.250.77.214]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9987443D4C for ; Fri, 19 Dec 2003 11:26:27 -0800 (PST) (envelope-from setantae@submonkey.net) Received: from cpc2-cdif3-6-0-cust204.cdif.cable.ntl.com ([81.103.67.204] helo=shrike.submonkey.net ident=mailnull) by shaft.techsupport.co.uk with esmtp (TLSv1:DHE-RSA-AES256-SHA:256) (Exim 4.24; FreeBSD) id 1AXQGY-0004S6-9w; Fri, 19 Dec 2003 19:26:26 +0000 Received: from setantae by shrike.submonkey.net with local (Exim 4.24; FreeBSD) id 1AXQGV-000IWz-Gt; Fri, 19 Dec 2003 19:26:23 +0000 Date: Fri, 19 Dec 2003 19:26:23 +0000 From: Ceri Davies To: jaco@premsoft.co.za Message-ID: <20031219192623.GA652@submonkey.net> References: <2063.196.39.12.116.1071861142.squirrel@webmail.premsoft.co.za> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <2063.196.39.12.116.1071861142.squirrel@webmail.premsoft.co.za> X-PGP: finger ceri@FreeBSD.org User-Agent: Mutt/1.5.4i Sender: Ceri Davies cc: freebsd-questions@freebsd.org Subject: Re: [4.9-R] Ip forwarding for internal VNC. X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Dec 2003 19:26:29 -0000 On Fri, Dec 19, 2003 at 09:12:22PM +0200, jaco@premsoft.co.za wrote: > Hi everybody, > > I have the following setup: > > FreeBSD Server (4.9-R) > 2 NIC's > [xl0,Public Range IP, 196.xx.xx.xx] > [xl1,Private Range IP, 192.168.0.1] > > Windows 2k server > [Private IP, 192.168.0.2] > > The Windows 2000 server is running VNC and is serving as > an application server for windows software that is not-so-stable on > FreeBSD. :P (The windows machine is not connected directly to the > Internet for obvious reasons ;) ) > > What I want: I want to be able to connect to the VNC service > running on the Windows machine, via the Internet. > > Is it possible to set up port forwarding so that if I connect > to the FreeBSD machine on port 5800, the request be forwarded > to the Windows machine on port 5800? Do I need to set up the > FreeBSD machine in any specific way to accomplish this setup? Don't do that. Use ssh port forwarding; that way the tunnel only exists when you want it to, and you will be the only person who can use it. Check the ssh manpage for details; see the -L option. Ceri --