Solved

Running Xwindows on remote machine through firewall using VPN

Posted on 2007-04-01
12
4,096 Views
Last Modified: 2013-12-27
I have a Suse 10.2 machine running on my company's network.  I access the company's network using Cisco VPN client from my Windows based computer at home.  I use Putty (ssh client) and Xming (free xhost server) on my computer at home.  

I want to run x-windows applications on my work computer and display them on my home computer.  Here is what I do (1) VPN into corporate network (2) use PUTTY to ssh into machine (3) load Xming and disable access control (4) run "export DISPLAY=XXX.XXX.XXX.XXX:0.0  (5) then I run "xemacs test.xt".  

The windows never appears on my home computer, and there are no error message .  I do not have this problem when I use a Linux machine on my home network.  Any suggestions?  I have a feeling it has something to do with VPN.  

Thank you for any help!
0
Comment
Question by:cs76737
12 Comments
 
LVL 18

Accepted Solution

by:
PowerIT earned 250 total points
ID: 18835892
Does the VPN concentrator have the necessary port open to the internal network or the suse machine?
- TCP & UDP 6000 and up (each time one higher for each additional display)
- TCP & UDP 177 for XDCMP
Also, are those ports open on the Suse box itself?
Is remote display manager enabled on the Suse box? I know I had to do this on our suse 9.2 boxes. It's hidden deep in Yast. See: http://linuxplanet.com/linuxplanet/reviews/5679/5/screenshot3183/

J.
0
 
LVL 24

Assisted Solution

by:slyong
slyong earned 250 total points
ID: 18841007
Hi cs76737,

Try this:
(1) VPN into corporate network
(2) Run Xming uisng this command: "C:\Program Files\Xming\Xming.exe" :0 -clipboard -multiwindow
(3) In the main configuration window of Putty (you get it when you start Putty), select Connection section, then SSH, then X11, and make sure you tick the Enable X11 Forwarding option.
(4) Run "xemacs test.txt"

Reference: http://solaris.reys.net/english/2006/04/x11_forwarding
0
 

Author Comment

by:cs76737
ID: 18871341
I was traveling last week, so I apologize for delay.  Will try first thing tomorrow.
0
Simple, centralized multimedia control

Watch and learn to see how ATEN provided an easy and effective way for three jointly-owned pubs to control the 60 televisions located across their three venues utilizing the ATEN Control System, Modular Matrix Switch and HDBaseT extenders.

 

Author Comment

by:cs76737
ID: 18873790
I tried the suggestion for slyong, and it still does not work.  Any other ideas?
0
 
LVL 24

Expert Comment

by:slyong
ID: 18874077
hmm.. those instruction should get it going.  When you start some program (e.g. xclock) what does it say?
0
 

Author Comment

by:cs76737
ID: 18874106
I execute xclock on the remote machine.  The xclock window just never appears on my machine.  Eventually the process on the remote machine fails.
0
 
LVL 24

Expert Comment

by:slyong
ID: 18874134
can do you:

$ echo $DISPLAY

and see what it say?
0
 

Author Comment

by:cs76737
ID: 18874164
I just tried your instructions on a machine at home.  They work.  I VPN into the work machine, and it doesn't work.  I followed the link you sent, and I made sure that /etc/ssh/sshd_config has X11forwarding enabled.  Do not understand why it isn't working!
0
 

Author Comment

by:cs76737
ID: 18874166
When I do printenv DISPLAY, it shows "localhost:10.0" or something like that.  It says the same thing on the machine at home (where the process works) and the machine at work (where it fails).
0
 
LVL 24

Expert Comment

by:slyong
ID: 18874437
Hi,

The $DISPLAY is correct.  I am not sure why your office machine is not working.  This method uses standard ssh x-forwarding.  So as long as you can reach a machine using ssh (port 22) it should work.  When you run xclock, the fact that is doesn't complaint about "cannot find display" (or something like that), the x-forwarding should be working.

However, I am not sure why it failed.  Another thing is that if you connect and check the netstat, it should show something like:

tcp        0      0 localhost:x11-ssh-offset    *:*                         LISTEN      -                  
0
 
LVL 62

Expert Comment

by:gheist
ID: 18874982
Use "xdpyinfo" instead of xclock.

That will show display server attributes and diagnostics without even showing a window.

0
 

Author Comment

by:cs76737
ID: 18886995
Problem is not solved, but I am convinced that it is specific to my corporate network.  I've tested solutions by PowerIT and slyong on other networks, and they work fine.  Since their solutions work in theory and I am not getting more replies, I am closing the ticket and splitting points.  
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Overview Often, we set up VPN appliances where the connected clients are on a separate subnet and the company will have alternate internet connections and do not use this particular device as the gateway for certain servers or clients. In this case…
Using libpcap/Jpcap to capture and send packets on Solaris version (10/11) Library used: 1.      Libpcap (http://www.tcpdump.org) Version 1.2 2.      Jpcap(http://netresearch.ics.uci.edu/kfujii/Jpcap/doc/index.html) Version 0.6 Prerequisite: 1.      GCC …
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

680 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question