Using VNC to connect to 3 PCs in a LAN behind a firewall

Posted on 2004-11-11
Medium Priority
Last Modified: 2013-11-16
Here is the scenario.

I work for a company that offsources employees from the Philippines to do the a large amount of our graphics work.  Initially they need to be trained and to do so we have been using RealVNC to connect to their desktop over Cisco VPN client connection between us and them.  To this point they have all been working at home with seperate DSL connections, but now we have hired three that live together and would like to share one DSL connection using a router (likely a Netgear WGR614).  How can we continue to utilize the VNC if they are sitting behind a firewall sharing the connection?  Is this possible?  Typically the router will assign an IP to each PC (192.168.x.x) which is useless to use when we attempt to connect.  We are sitting behind a firewall as well, but we only need to be able to control their PCs, not vice-versa.  Ideas?  Do I need to supply more info?
Question by:srejja
  • 2

Expert Comment

ID: 12557734
We use the same program.  Do you use client vpn software or is the firewall setup to do the VPN?  If they use a client vpn program then you should be able to connect to them directly...thats how we do it.  Or you could always have them Add a VNC client when you want to connect, they will then add your Ip address, and then you Run listening VNC viewer.

Expert Comment

ID: 12557752
You will need to forward the ports to the internal address from the router...

if your router allows for port redirection you will not need to change anything on the clients.


forward tcp port 5900 to port 5900(first internal machine)
forward tcp port 5901 to port 5900(second internal machine)
forward tcp port 5902 to port 5900(third internal machine)

then from the client connect to the proper external IP address

If the router does not support port redirection you will need to set the client to use the correct port and your forwarding should look like this

forward tcp port 5900 to port 5900(first internal machine)
forward tcp port 5901 to port 5901(second internal machine)
forward tcp port 5902 to port 5902(third internal machine)

I would actually choose to use a different external port number(for security)

something like

forward tcp port 32751 to port 5900(first internal machine)
forward tcp port 32752 to port 5900(second internal machine)
forward tcp port 32753 to port 5900(third internal machine)

then just enter the correct connection port into the client


Accepted Solution

Technicon-SG earned 2000 total points
ID: 12557772
I added the above post assuming that the users were not connected to the VPN at the time you needed to attach to the machine....if the users are attached to the VPN they should be receiving an IP address on your LAN and you should be able to connect to that IP address with no config changes

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This program is used to assist in finding and resolving common problems with wireless connections.
This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question