PC's on a Home Network - accessing remotely?
#1
Scooby Regular
Thread Starter
I have a PC at home which is acting as a router (PC1) I have other PC's sharing the internet connection (PC's 2,3,4).
I need to be able to access PC2 via PC Anywhere or a similar Program from work. Is there anyway of doing this, as I only have an IP address for my Main PC
I need to be able to access PC2 via PC Anywhere or a similar Program from work. Is there anyway of doing this, as I only have an IP address for my Main PC
#4
Scooby Regular
You can also use VNC, but the main point is enabling port-forwarding on your router (PC1).
Say the public IP of the router is 191.200.45.21 and VNC is configured for port 5800, then you need to tell the router to forward traffic sent to 191.200.45.21:5800 to 192.168.0.2:5800 (or whatever the IP address of PC2 is).
What router software are you using on PC1. I know the iptables command if you're using Linux.
Stefan
Say the public IP of the router is 191.200.45.21 and VNC is configured for port 5800, then you need to tell the router to forward traffic sent to 191.200.45.21:5800 to 192.168.0.2:5800 (or whatever the IP address of PC2 is).
What router software are you using on PC1. I know the iptables command if you're using Linux.
Stefan
#6
Scooby Regular
Thread Starter
I am running Norton Firewall (Allthough i am changing to Zonelarm as it's easier to configure), and just using standard Windows XP Internet connection Sharing. Most of the above has just gone straight over my Head
IP should be dynamic but hasn't changed since I got Blueyonder Broadband about a year ago
Andy
IP should be dynamic but hasn't changed since I got Blueyonder Broadband about a year ago
Andy
#7
Scooby Regular
Within the Internet Connection Firewall setting of XP, there's options to configure port-forwarding.
Right-click Network Connections and select Properties. Right-click on Local Area Connection, then select the Advanced Tab. Click on the Settings button and select the Services tab. That's all the stuff for configuring particular ports.
New I shouldn't have bothered mentioning Linux
Stefan
Right-click Network Connections and select Properties. Right-click on Local Area Connection, then select the Advanced Tab. Click on the Settings button and select the Services tab. That's all the stuff for configuring particular ports.
New I shouldn't have bothered mentioning Linux
Stefan
Trending Topics
#10
Scooby Regular
</Stating the bleeding obvious mode on>
If you can access your machine remotely then every other script kiddie in the world can as well....Port scanning for PCAnywhere/VNC etc are regularly occur.
</Stating the bleeding obvious mode off>
Jeff
If you can access your machine remotely then every other script kiddie in the world can as well....Port scanning for PCAnywhere/VNC etc are regularly occur.
</Stating the bleeding obvious mode off>
Jeff
#11
Scooby Regular
Port scanning for PCAnywhere/VNC etc are regularly occur
NAT is a simple method for connecting multiple private computers through a single public address. This gives you a basic level of firewall security.
NAT Explained
Port forwarding is an extension of NAT that provides a way of passing information to a specific device on the private part of the network
Port Forwarding (mapping) Explained
Stefan
#12
Scooby Regular
I would be tempted (in your position) to use something like PPTP to tunnel to the Firewall machine. While this doesn't encrypt the data or header information it will restrict access to clients that have the correct PPTP information. This is something that Win2K & XP have built in (although its a pain in the *** to set-up). If you wanted to get serious then you should use a IPSec VPN tunnel (probable with Manuel IKE rather than Shared Secret)with user authentication.
Static NAT and/or PAT will protect you from the vast majority of hacks but it isn't a security protocol. It is probable OK for your situation.
Jeff
Static NAT and/or PAT will protect you from the vast majority of hacks but it isn't a security protocol. It is probable OK for your situation.
Jeff
#14
Scooby Regular
Join Date: Nov 2001
Location: Leeds - It was 562.4bhp@28psi on Optimax, How much closer to 600 with race fuel and a bigger turbo?
Posts: 15,239
Likes: 0
Received 1 Like
on
1 Post
Running remotely anywhere and dynamic dns through www.dyndns.org
Mail me if you want more info.
David
[Edited by David_Wallis - 5/10/2002 10:27:56 AM]
#15
So you configure your firewall software to only accept connection from your work IP address. This should stop any young kiddies from connecting to your PC ..... shouldn't it?
PS: I have heard of port mapping referred to as PAT (Port Address Translation). To me it's all just NAT.
[Edited by carl - 5/9/2002 11:13:05 PM]
#16
Port mapping tends to describe incoming connections to a firewall being mapped (NATed) to different internal IP addresses depending on destination port
PAT tends to be used to describe outgoing connections from multiple internal IP addresses being NATed behind a single (or pool) IP address with the source port ebing used to track the individual connection
Both of which, as you say, are specific forms of NAT.
I would say that to simply access a home PC. The combination of using a filter on source IP, a non-standard port for the Remote Control Application and whatever authentication the Remote control provides, plus the underlying security in the OS being controlled would be sufficent for me (and is in fact precisely how I control my home PC when needed). Its got to be someone who knows you to go after all those details. And if they're that determined then you're better of unplugging your broadband entirely.
-Mind you I'm on ISDN so have the extra security that I have to dial a specific number to wake my box when needed. Depending on how often you'll need it, I would suggest you enable it only when you know your going to want it.
Deano
[Edited by dsmith - 5/9/2002 11:25:44 PM]
PAT tends to be used to describe outgoing connections from multiple internal IP addresses being NATed behind a single (or pool) IP address with the source port ebing used to track the individual connection
Both of which, as you say, are specific forms of NAT.
I would say that to simply access a home PC. The combination of using a filter on source IP, a non-standard port for the Remote Control Application and whatever authentication the Remote control provides, plus the underlying security in the OS being controlled would be sufficent for me (and is in fact precisely how I control my home PC when needed). Its got to be someone who knows you to go after all those details. And if they're that determined then you're better of unplugging your broadband entirely.
-Mind you I'm on ISDN so have the extra security that I have to dial a specific number to wake my box when needed. Depending on how often you'll need it, I would suggest you enable it only when you know your going to want it.
Deano
[Edited by dsmith - 5/9/2002 11:25:44 PM]
#17
Scooby Regular
Thread
Thread Starter
Forum
Replies
Last Post
Mattybr5@MB Developments
Full Cars Breaking For Spares
12
18 November 2015 07:03 AM