Who am I?
Internet technologist, doing IP since 1988.
“Garage Entrepreneur”
#4 at Milkyway Networks (1994)
IETF standard security:IPsec/VPN
RFC4025
RFC4322
(1998)
Xelerance Corp 2003
FreeS/WAN (2001)
Who am I?
Internet technologist, doing IP since 1988.
“Garage Entrepreneur”
#4 at Milkyway Networks (1994)
IETF standard security:IPsec/VPN
RFC4025
RFC4322
(1998)
Xelerance Corp 2003
FreeS/WAN (2001)
Agenda.
●What is remote access?
●Telnet
●X-Windows
●Ssh
●RDP and VNC
●Summary
This talk at http://www.sandelman.ca/SSW/talks/remoteaccess2011
What is remote access?
●use a computer that is not in front of you.
●Some systems think of a “login” as really being a drive share (Novell). This is not remote access.
●Why do you want to do this?
Terminals (and modems)
Shells and TTYs
RS-232
Telnet
Firewalls
●Firewalls (and more so, NAT as pseudo-security) prevent telnet and remote access.
●If you have a DSL/cable “router” then you have this, and you need one of:
–IPv6
–Port forward rules
–a VPN
X-Windows
Xserver: xorg
Secure Shell
Secure Shell and port forwarding
Secure Shell and X-windows forwarding
Xserver: xorg
Secure Shell and agent forwarding
●An example.
ssh-add
magic
Remote Desktop Protocol (RDP)
Part 1: how things normally work
Remote Desktop Protocol (RDP)
Part 2: with RDP
Virtual Network Computing (VNC)
Part 1: windows or vino
VNC
server
Virtual Network Computing (VNC)
Part 2: Xvnc
SPICE, NX, TurboVNC, ...
●SPICE is a protocol invented by Redhat/Qumranet.
●NX is a reduced bandwidth X-windows
●TurboVNC is a Sun project to bring OpenGL capabilities into the VNC fold.
–Xvnc server has no hardware underneath it normally!
●There are others, including Citrix, SIMtone/XDS, and many extensions to RDP.
Virtualized Desktops
●Step 1: Pick one of the previous solutions.
●Step 2: Run server machine in a virtual machine.
●Step 3: Profit!
Conclusions
●You can do a lot with SSH.
●VNC works much better than RDP over WANs
●No “standard” yet.
●
This talk at http://www.sandelman.ca/SSW/talks/remoteaccess2011