RE: [m0n0wall] more VNC client behind m0n0

From:	"Josh McAllister" <josh at bluehornet dot com>
To:	=?iso-8859-2?Q?Peter_Parni=E8an?= <peter at procad dot sk>, <m0n0wall at lists dot m0n0 dot ch>
Subject:	RE: [m0n0wall] more VNC client behind m0n0
Date:	Fri, 11 Feb 2005 01:55:37 -0800

You would simply leave source port blank. But I hope you're restricting source IP.?!

Have you considered setting up a VPN?

Josh McAllister

> -----Original Message-----
> From: Peter Parnièan [mailto:peter at procad dot sk]
> Sent: Friday, February 11, 2005 2:41 AM
> To: m0n0wall at lists dot m0n0 dot ch
> Subject: [m0n0wall] more VNC client behind m0n0
> 
> Hi guys, I have this problem:
> I have some PC behind m0n0 and want to reach them remotely from my office.
> Everything is OK but only for one VNC client (PC).
> I dont know how to set firewall rules because im using this settings for
> wan
> interface (1.11):
> 
>  TCP/ */ * /192.168.100.X1/ 5900 - 5916  NAT VNC
> 
> That mean all ports are reaching this IP:192.168.100.X1.
> I was tring to set all VNC client working on diferents port 5901,
> 5999...etc.
> 
> So, from office I put address to VNC like this: 192.168.100.X:5999 and in
> the firewalls log is my office IP address but source port is (every time
> diferent)somethings like
> WAN /213.151.233.81/ port 3291 / 213.215.114.87 / port 5999 /TCP
> 
> The questin is, how to set firewalls settings?  (source port is
> changing..)
> 
> Similar problem I have with wifi clients working at port 81, 81-88.
> 
> TIA, peter
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch