Solved

Running Xwindows on remote machine through firewall using VPN

Posted on 2007-04-01
12
4,067 Views
Last Modified: 2013-12-27
I have a Suse 10.2 machine running on my company's network.  I access the company's network using Cisco VPN client from my Windows based computer at home.  I use Putty (ssh client) and Xming (free xhost server) on my computer at home.  

I want to run x-windows applications on my work computer and display them on my home computer.  Here is what I do (1) VPN into corporate network (2) use PUTTY to ssh into machine (3) load Xming and disable access control (4) run "export DISPLAY=XXX.XXX.XXX.XXX:0.0  (5) then I run "xemacs test.xt".  

The windows never appears on my home computer, and there are no error message .  I do not have this problem when I use a Linux machine on my home network.  Any suggestions?  I have a feeling it has something to do with VPN.  

Thank you for any help!
0
Comment
Question by:cs76737
12 Comments
 
LVL 18

Accepted Solution

by:
PowerIT earned 250 total points
ID: 18835892
Does the VPN concentrator have the necessary port open to the internal network or the suse machine?
- TCP & UDP 6000 and up (each time one higher for each additional display)
- TCP & UDP 177 for XDCMP
Also, are those ports open on the Suse box itself?
Is remote display manager enabled on the Suse box? I know I had to do this on our suse 9.2 boxes. It's hidden deep in Yast. See: http://linuxplanet.com/linuxplanet/reviews/5679/5/screenshot3183/

J.
0
 
LVL 24

Assisted Solution

by:slyong
slyong earned 250 total points
ID: 18841007
Hi cs76737,

Try this:
(1) VPN into corporate network
(2) Run Xming uisng this command: "C:\Program Files\Xming\Xming.exe" :0 -clipboard -multiwindow
(3) In the main configuration window of Putty (you get it when you start Putty), select Connection section, then SSH, then X11, and make sure you tick the Enable X11 Forwarding option.
(4) Run "xemacs test.txt"

Reference: http://solaris.reys.net/english/2006/04/x11_forwarding
0
 

Author Comment

by:cs76737
ID: 18871341
I was traveling last week, so I apologize for delay.  Will try first thing tomorrow.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 

Author Comment

by:cs76737
ID: 18873790
I tried the suggestion for slyong, and it still does not work.  Any other ideas?
0
 
LVL 24

Expert Comment

by:slyong
ID: 18874077
hmm.. those instruction should get it going.  When you start some program (e.g. xclock) what does it say?
0
 

Author Comment

by:cs76737
ID: 18874106
I execute xclock on the remote machine.  The xclock window just never appears on my machine.  Eventually the process on the remote machine fails.
0
 
LVL 24

Expert Comment

by:slyong
ID: 18874134
can do you:

$ echo $DISPLAY

and see what it say?
0
 

Author Comment

by:cs76737
ID: 18874164
I just tried your instructions on a machine at home.  They work.  I VPN into the work machine, and it doesn't work.  I followed the link you sent, and I made sure that /etc/ssh/sshd_config has X11forwarding enabled.  Do not understand why it isn't working!
0
 

Author Comment

by:cs76737
ID: 18874166
When I do printenv DISPLAY, it shows "localhost:10.0" or something like that.  It says the same thing on the machine at home (where the process works) and the machine at work (where it fails).
0
 
LVL 24

Expert Comment

by:slyong
ID: 18874437
Hi,

The $DISPLAY is correct.  I am not sure why your office machine is not working.  This method uses standard ssh x-forwarding.  So as long as you can reach a machine using ssh (port 22) it should work.  When you run xclock, the fact that is doesn't complaint about "cannot find display" (or something like that), the x-forwarding should be working.

However, I am not sure why it failed.  Another thing is that if you connect and check the netstat, it should show something like:

tcp        0      0 localhost:x11-ssh-offset    *:*                         LISTEN      -                  
0
 
LVL 62

Expert Comment

by:gheist
ID: 18874982
Use "xdpyinfo" instead of xclock.

That will show display server attributes and diagnostics without even showing a window.

0
 

Author Comment

by:cs76737
ID: 18886995
Problem is not solved, but I am convinced that it is specific to my corporate network.  I've tested solutions by PowerIT and slyong on other networks, and they work fine.  Since their solutions work in theory and I am not getting more replies, I am closing the ticket and splitting points.  
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've written this article to illustrate how we can implement a Dynamic Multipoint VPN (DMVPN) with both hub and spokes having a dynamically assigned non-broadcast multiple-access (NBMA) network IP (public IP). Here is the basic setup of DMVPN Pha…
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question