Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'How to securely control another Mac over the internet' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
How to securely control another Mac over the internet
Authored by: The Cardinal on Sep 20, '06 03:31:45AM

This would be a perfect hint for me if I could get it to work. I'm off to Sydney at Christmas and I'm giving my Mum my iMac so that she can video chat with the kids. Thing is she is completely computer illiterate so I need something like this to assist her if she has any trouble.

Here's what I have done:

Admin computer (MBP):
Enabled remote login
Created dummy account
Downloaded COTVNC
Got a static IP address and DNSUpdate

Client (iMac):
Downloaded and enabled ARD
Created terminal script
Generated a public-private key

I tried to initiate the tunnel at home, but it was refused because port 22 was not opened. Both machines were accessing the internet through the router at the same time so I think that may be the problem there.

Now I am trying to do the same thing, but I am at work and so I am probably behind a firewall and a router, etc. I cannot open any ports on the firewall. I presume that this would be a problem. However, the original hint says " did have to map the ssh port (22) on my router to my PowerBook, and I did have to open up the ssh port on the Mac firewall." Can somebody tell me how to do this please.

Thanks for your help.



[ Reply to This | # ]
How to securely control another Mac over the internet
Authored by: The Cardinal on Sep 20, '06 03:48:21AM

Rereading that post it seems a bit wishy-washy. What I am actually asking is this:

1. Should I be able to control the client even if the admin and client computers are accessing the internet through the same router?

2. Do I need to open port 22 on my admin computer for any reason, and if so how?

3. Assuming that I did have access to the router/firewall at work, would I have to do anything in addition to the hint (this is pretty much the same as Q2 I suppose)?

4. Currently when I try to connect from work, my wife is at the iMac and clicks the terminal script. It sits there for about 10/20 seconds then times out. Is it waiting for a connection? Is there somewhere where I can increase the time-out period?

You can probably tell that I am not very knowledgeable in this area, so any help would be greatly appreciated.

Cheers



[ Reply to This | # ]
Open and redirect ports...
Authored by: WinUser on Sep 22, '06 01:06:13PM

For your mum to open the tunnel, she starts the terminal script. This will make her side easy, since she initiates the tunnel, so she doesn't have to open any ports for the outside world. But... you will be contacted by her tunnel, so your side needs a couple of things:
- your router has to know to which local address it should forward an incoming port 22 request, and not block it
- your machine (PC, laptop, notebook) needs to not block incoming connections on port 22
- you need to have a ssh deamon (ssh server) running on your laptop, but you probably have that.

When opening port 22 and forwarding port 22 you can sometimes tell the router to only allow this for a certain range of external ip addresses (depending on router type) .This could be your mom's ip, restricting port 22 forwarding in a way to let only your mom through.

I just set this up today, and gave my mom a Mac. It works like a charm, if port forwarding is setup correctly.



[ Reply to This | # ]