In this FREE six-day email course, you'll learn from Janis Griffin, Database Performance Evangelist. She'll teach 12 steps that you can use to optimize your queries as much as possible and see measurable results in your work. Get started today!
Solved
VNC, firewalls, and SBS2K
Posted on 2004-09-23
Hello -
I am having a problem getting to VNC from outside of my internal network. I have a Zoom X4 ADSL Modem/Router (internal IP 192.168.0.253) which i have set up the virtual server to forward ports 5800 and 5900 to the corresponding ports on the VNC Server (192.168.0.253).
.253 is a SBS2K machine which is running VNC (the VNC client is on 0).
If i type in 192.168.0.253:5800 in a web browser on the internal network i can connect to it fine.
However if i type in 192.168.254:5800 in the browser, the page cannot be found.
I placed .253 in the DMZ and found the same thing happened (so the Tech support at Zoom can't help me)
I also set up Outlook Web Access SSL on port 443 which works fine internally, but again not externally.
However, email (ports 25 and 110) is going through the port forwarding no problem.
I uninstalled ISA server just in case... but it's still not working... I have no software firewalls on .253
Please...please... does anybody have any ideas?
Many thanks
I am having a problem getting to VNC from outside of my internal network. I have a Zoom X4 ADSL Modem/Router (internal IP 192.168.0.253) which i have set up the virtual server to forward ports 5800 and 5900 to the corresponding ports on the VNC Server (192.168.0.253).
.253 is a SBS2K machine which is running VNC (the VNC client is on 0).
If i type in 192.168.0.253:5800 in a web browser on the internal network i can connect to it fine.
However if i type in 192.168.254:5800 in the browser, the page cannot be found.
I placed .253 in the DMZ and found the same thing happened (so the Tech support at Zoom can't help me)
I also set up Outlook Web Access SSL on port 443 which works fine internally, but again not externally.
However, email (ports 25 and 110) is going through the port forwarding no problem.
I uninstalled ISA server just in case... but it's still not working... I have no software firewalls on .253
Please...please... does anybody have any ideas?
Many thanks
5-
4
- +1
11 Comments
> I have a Zoom X4 ADSL Modem/Router (internal IP 192.168.0.253) which i have set up the virtual server to forward ports 5800 and 5900 to the corresponding ports on the VNC Server (192.168.0.253).
Your internal Ip of your Zoom is 192.168.0.253 and your server is 192.168.0.253? They need to be different addresses.
Your internal Ip of your Zoom is 192.168.0.253 and your server is 192.168.0.253? They need to be different addresses.
Ignoring the internal IP confusion for a second, are you using the external modem "real" IP to access the server from the outside? If you are trying to access this from accross the internet you are going to have to use the router external IP which will not be in the 192.168. range.
You should go to http://www.whatsmyip.org/ to see what the external router IP is. This is the address you will need to access your internal servers accross the internet.
Something like http://www.whatsmyip.org/ is a longer term soultion if your IPs are dynamic and change over time.
You should go to http://www.whatsmyip.org/ to see what the external router IP is. This is the address you will need to access your internal servers accross the internet.
Something like http://www.whatsmyip.org/ is a longer term soultion if your IPs are dynamic and change over time.
Sorry - the router is .254
The problem is the same whether it's the internal or external IP address that's used.
The problem is the same whether it's the internal or external IP address that's used.
> I placed .253 in the DMZ and found the same thing happened (so the Tech support at Zoom can't help me)
I don't see that the Zoom Z4 has DMZ port?
Your external interface on the Zoom has a public address right? Connected directly to your ISP? Is this interfce using statically or dynamic?
I don't see that the Zoom Z4 has DMZ port?
Your external interface on the Zoom has a public address right? Connected directly to your ISP? Is this interfce using statically or dynamic?
The Zoom router has a public static IP address, the X4 has a DMZ in the Advanced Setup options. I've checked that the ports are open... i just can't understand why VNC (or SSL) won't receive connections coming in through the router.
DMZ in the virtual sense, not a real interface?
If you have the router configured correctly, connecting to a.b.c.d:5800 from the public side should be NAT-ed and forwarded to your server (a.b.c.d is your public ip). The return traffic should be un=NAT-ed in the same fashion with proper state being mintained. To test to see if the traffic is getting there:
1. use Ethereal to capture incoming traffic to VNC host. You need to either span ports, use a hub or install Ethreal on the VNC host. Make sure it is capturing before doing the rest of the test.
2. connect from a public IP to a.b.c.d:5800 while the capture is turned on
3. you will see one of two possibilities: connection request from the internal address of the Zoom or no connection request
4. If you see no connection request, the router is not doing its job
5. If you see the connection request, there is another problem; maybe no return traffic?
If you have the router configured correctly, connecting to a.b.c.d:5800 from the public side should be NAT-ed and forwarded to your server (a.b.c.d is your public ip). The return traffic should be un=NAT-ed in the same fashion with proper state being mintained. To test to see if the traffic is getting there:
1. use Ethereal to capture incoming traffic to VNC host. You need to either span ports, use a hub or install Ethreal on the VNC host. Make sure it is capturing before doing the rest of the test.
2. connect from a public IP to a.b.c.d:5800 while the capture is turned on
3. you will see one of two possibilities: connection request from the internal address of the Zoom or no connection request
4. If you see no connection request, the router is not doing its job
5. If you see the connection request, there is another problem; maybe no return traffic?
If youare on windows you need to also download winpcap and install. Then install Ethereal. Click the capture button, try your connect, stop capture and look at data.
Hi there - it was because i was accessing the router from an internal IP - i just hooked up the computer to a modem and went online and everything was hunky dory.
D'OH!
D'OH!
Featured Post
There are many ways to learn to code these days. From coding bootcamps like Flatiron School to online courses to totally free beginner resources. The best way to learn to code depends on many factors, but the most important one is you. See what course is best for you.
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Join & Write a Comment Already a member? Login.
Unable to change the program that handles the scan event from a network attached Canon/Brother printer/scanner. This means you'll always have to choose which program handles this action, e.g. ControlCenter4 (in the case of a Brother).
Fix RPC Server is unavailable Error in Exchange 2013, 2010, 2007, and 2003 Server. Different reason can such as network connectivity issue, name resolution issue, firewall, registry corruption that lead to RPC Server Unavailable error.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special.
It's completely agentless, but does let you create an agent, if you desire.
It offers powerful scalability …
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Suggested Courses
Course of the Month5 days, 2 hours left to enroll
579 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.