|
||||||||
Tom - do you have static IP? If so, then when creating your firewall rule make sure the source is your IP. If its dynamic within a small range then simply allow that network (its unlikely your ummediate neighbours will hack your folk's box :) Another thought... Allow administration via https from the wan, and turn on/off the NAT yourself. Again this could be chained down to your source IP/range Failing that - ask someone who does have a static IP for a shell/bounce. -----Original Message----- From: Tom [mailto:tomvaldes at comcast dot net] Sent: Tuesday, 25 October 2005 1:31 p.m. To: m0n0wall at lists dot m0n0 dot ch Subject: [m0n0wall] helping remote users - what's recommended I need an easy way to help my parents with their computer (XP) and am looking for suggestions. I obviously need it to be secure, but I don't want them to have to deal with enabling and disabling port forwarding, so the port forwarding options would always have port forwarding on. The options I am looking at are the following: --logmein.com (like gotomypc.com but free) reqires the logmein software running on their machine. I could probably have them turn it off and only have it running when I'm going to connect. --VNC solution (UltraVNC, TightVNC, etc) Use port forwarding to their machine.. They would start VNC server when I need to connect and turn it off when I am done. If I leave port forwarding always on, but the VNC software is not running and therefore their machine is not listening on the port, the machine should be safe..correct? --Remote Desktop Use port forwarding to their machine. Allows anyone to hit their machine since it is always running.. Obviously I would set it for password access. thanks, tom --------------------------------------------------------------------- To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch |