[ previous ] [ next ] [ threads ]
 From:  Craig FALCONER <cfalconer at avonside dot school dot nz>
 To:  'Tom' <tomvaldes at comcast dot net>, m0n0wall at lists dot m0n0 dot ch
 Subject:  RE: [m0n0wall] helping remote users - what's recommended
 Date:  Tue, 25 Oct 2005 14:46:02 +1300
Tom - do you have static IP?

If so, then when creating your firewall rule make sure the source is your

If its dynamic within a small range then simply allow that network (its
unlikely your ummediate neighbours will hack your folk's box :)

Another thought... Allow administration via https from the wan, and turn
on/off the NAT yourself.  Again this could be chained down to your source

Failing that - ask someone who does have a static IP for a shell/bounce.

-----Original Message-----
From: Tom [mailto:tomvaldes at comcast dot net] 
Sent: Tuesday, 25 October 2005 1:31 p.m.
To: m0n0wall at lists dot m0n0 dot ch
Subject: [m0n0wall] helping remote users - what's recommended

I need an easy way to help my parents with their computer (XP) and am 
looking for suggestions.
I obviously need it to be secure, but I don't want them to have to deal 
with enabling and disabling port forwarding, so the port forwarding 
options would always have port forwarding on.

The options I am looking at are the following:

--logmein.com (like gotomypc.com but free)
reqires the logmein software running on their machine.  I could probably 
have them turn it off and only have it running when I'm going to connect.

--VNC solution (UltraVNC, TightVNC, etc)
Use port forwarding to their machine.. They would start VNC server when 
I need to connect and turn it off when I am done.
If I leave port forwarding always on, but the VNC software is not 
running and therefore their machine is not listening on the port, the 
machine should be safe..correct?

--Remote Desktop
Use port forwarding to their machine.  Allows anyone to hit their 
machine since it is always running..  Obviously I would set it for 
password access.


To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch