Recommended Posts

Hello, I am facing issue  , I need to access google cloud hosted compute machine running centos 7  on my windows 8 laptop 

I am successful at making ssh connection 

However, vnc connection doesn't work with my university network but runs fine on my cellular data or other external networks

I tried changing the port number of vnc server from 5900 to 35548 but that doesn't work

I even tried the ssh tunneling via putty as shown in a video on youtube but again it seems to have used the same port number as 5900 

I suspect that this university network 5900 ,also earlier when I hosted windows 2012 server its rdp didnot work on the university network

Also ,tried teamviewer but teamviewer doesnot work on server 

Going to univ network center is my last option .Please help

What exactly are you trying to do??

 

Your trying to access google compute machine??

 

Sounds like your trying to circumvent your univ filtering of outbound connections??  If you can make a ssh connection to this compute vm, then you could tunnel through that connection and do whatever you wanted, vnc, etc. Yeah if your server is 5900 that would be the port you would use, just through the tunnel.

 

Not sure what your question is about 2k12 and rdp?  Without details of network impossible to say what you were doing wrong.  As to TV running on server versions of windows - yeah it does!

Ok, sorry for all this messed up things, I am completely new to linux and networking when it comes to practical.

I will go again on my problem , I have a google compute instance (server) running on google datacenters. I have installed centos 7 on my remote server. I can access the centos 7 remotely via ssh connection in Putty . My laptop has normal windows os i.e. windows 8.

In order to take graphical access I need vnc access . Thus , I installed tiger vnc server on my remote server. Then tried to take access by the vnc viewer , vnc viewer fails on my university network  . But is fine on any external net such as cellular data or dongle. Now this is surely some port blocking or firewall , mostly port 5900 I  guess  . Going to university network center is an option but its the last one. I saw that through ssh tunnel we can tunnel our vnc connection .So I watched few videos on that but it doesn't seem to help (maybe I am doing something wrong)  ,Here are few things that I tried and failed

1) Changed the vncserver port from 5900 to some random port value  3400 etc (taken into account the consequences such as adding new port to firewall,etc)

    It changed , but it gave me strange results , like when vncserver was actually running it wasn't listening on that particular port

   The proof is that when I netcat i.e.when I type in my centos 7 terminal  nc 189.134. 5901 I get a reply as RFB 03.something (which means my vnc is working fine on ip:5901)

  When port number was changed I typed same command with different port number say nc 189.134.wahtever 35549 , I got reply as connection timed out or refused.

 I tried all types of things, accessed log files of vncserver find out what port its running on, even examined the process and tcp connections using netstat ,everything was normal only it wasn't  listening on that port.(nc command never returned me RFB as a response)

    Here's how I changed it http://itstudent.org/blog/?p=631

    But it failed too.

 

2) I tried tunneling as per shown in videos 

     opened putty -> loaded normal ssh configuration file ->, then in tunnels option entered source port as 5901 and destination as localhost:5901 or even tried this  "server external ip address:5901"

    and  -> then opened the vnc viewer entered, localhost:5901 or server ip address:5901 and then tried to connect but failed again. 

 

If this doesn't form a correct picture do let me know , I am noob in this so I don't know how to do this stuff exactly. Sorry again for any inconvenience. And yes I am not trying to circumvent my univ network. Its just I am avoiding to go there. As a last option I would go. Thank you for your help and feedback . You were the quickest. 

 

Tunneling Screenshot.png

Tunneling Viewer Screenshot.png

VNC Viewer Screenshoty.png

Umm why would you try to VNC onto "localhost" on any port? localhost is your own computer, the same one you are running vnc on, are you trying to use port translation?...also are you sure you have configured the port on your client and on the server too cos it sounds like the server isn't expecting you to use any port other than 5901.

 

Can't you reconfigure the port on the server and just use the same port on both ends?

 

5901 is a common vnc port and on a uni network it was bound to be disabled as they probably use it themselves.

Check these out:

 

http://www.uaf.edu/arsc/knowledge-base/vnc-and-ssh-port-fowardin/index.xml

 

https://intranet.cs.hku.hk/csintranet/contents/technical/howto/putty-portforward.jsp

 

http://cects.com/ssh-local-and-remote-port-forwarding-with-vnc/

 

This may also be your problem, your vnc session may have been blocked by the server:

 

http://stackoverflow.com/questions/26813070/google-compute-engine-getting-blocked-after-accessing-ssh-a-few-times

 

Apparently you might need to whitelist your university IP on the server to stop it blocking you, if that's what is happening.

"And yes I am not trying to circumvent my univ network. Its just I am avoiding to go there"

 

Huh???  In one sentence you say you can not get to your google compute machine from your univ, then you say your trying to avoid going there - go where?  Google compute?

 

Lets go over some basics.. Does not matter where you currently at!!

 

Can you ssh to your google compute machine?  If so vnc is listening on what port? 5901?  On what IP?  Its public IP, its loopback, all of them?  from your ssh connection to your google compute box do a netstat or sockstat for your listening ports.  What does it show listening on 5901??

 

Does not matter firewall at your location, or firewall at other location if you can ssh then you can tunnel through this ssh tunnel and hit the remote machine vnc..

 

Yes in a ssh tunnel, the port you listen on locally can be anything, you connect to this local listening on port with your vnc client after you have created the ssh connect with the tunnel.  Your ssh client than ses oh traffic to my local port X, send it down the tunnel to IPX:portY..

 

There are a bajillion guides on the net on how to vnc through a ssh tunnel..

Thank you all ,For your response 

The thing is I am avoiding to go to network center at my university because they are very slow people and will take lot of explanations to explain them , Basically they are not so cooperative , thats why I am avoiding them( network people at my univ ) ,If it is the case that google compute machine has blocked my ip then ,I will need to contact them . Which I will do if all fails. My tunneling is flop because I dont know much of it ,It was very first time , Thank you PsychoKilla for the links ,I will surely try those. As +budman has suggested I will try netstating or sockstating the server and examine the case more deeply. 

And Psychokilla - I tried to reconfigure the vnc server base port which is 5900 to some random say 3400 but it fails .

I dont think it is needed to reconfigure the port on vnc viewer(correct me if I am wrong)  as we specify the the port for connection say server ip addeess :5901  like that . So just the new port right ? like server ip address:3401 . 

Also I dont think I need to install ssh daemon on server as it is installed by default and I can connect to it using my putty . So the server side ssh server is taken care of. 

I will try all the solutions listed by you both and will let you know the results asap . Thank you again . 

For some VNC viewer clients, including the one you're using, to specify a different port, you do so after a double colon, rather than a single colon, e.g 127.0.0.1::5901 (see the text underneath the "Remote Host" textbox)

 

This is because linux systems can run multiple 'displays' which can be connected to via VNC, and they use the single colon notation for the display number, to connect on a different port, you need to use two colons.

 

Note, you only enter the port like this in your VNC client, not in Putty when you're configuring the tunnelling, use the single colon notation there.

Hey, Guys thank you for your solutions it was great to get feedback from you. I am happy to announce that my problem has been finally solved. What I did is listed below

 1) Instead on vnc used xrdp which is RDP server for linux server os. 

Why? because I couldn't properly get vnc running on the server. It was working fine then I don't know exactly I installed something did many tuts on that and it started malfunctioning i.e. I was not able to start that typical vncserver.service.1 so I reset my google instance, installed vnc again and was again stuck with vncserver.service .1 ( the name is not perfect but somewhat like that) not being able to start. But service.2 something was able to start which runs on display 2 and when you take access (through the external net) it used to give me an error message on my remote desktop as something went wrong log out and all. I think it was due to my main display wasn't shift to display 2. I also realized that I didn't add ports 5900 into the firewall.Google Cloud has another networking section in its console browser window and if we don't add firewall rules there we can't realize them in our VM even if we add them on the VM's os like using some command to add them to firewall in a Linux terminal. Also, tried that random port experiment again and was succeeded in running vnc server on port 17333 but got blocked in a proxy net of university when trying to view through vnc viewer. So basically vnc started giving many problems.

Link to install xrdp-  http://www.itzgeek.com/how-tos/linux/centos-how-tos/install-xrdp-on-centos-7-rhel-7.html

2) Confirmed that it wasn't port issue 

In this what I did is made sure that it wasn't the fault of port 5900, I started a vncserver on windows(on my laptop) using TightVNC (It's free and easy to install)  and tried to take its access from my android device using Remote Ripple (TightVnc's android vnc viewer) and was succeeded as android and laptop were on the same network, repeated it by replacing android with the other PC on the network was again succeeded. So that made sure that it wasn't with the port number.

 

3) Then as  PsYcHoKiLLa suggested it may be that server was blocking my ip address  (this is because this univ has strange IP addresses may be due to they have the different net, even  Instagram doesn't let me like anyone's post as it says I have a different IP address, I used to thought it was proxy)

But I didn't know how to exactly stop that, as the link provided talks about ssh server blocking the ip address . I was unsure if the vnc does the same. So I was planning to investigate this matter in detail.

 

4) Successful Tunneling, After searching this link http://cects.com/ssh-local-and-remote-port-forwarding-with-vnc/ provided by  PsYcHoKiLLa I was pretty sure that I would be able to do this but again got stuck at running this command  ssh -R 6999:localhost:5901 user@192.168.1.3 (don't  worry I replaced username and IP address with the relevant one ). I was having problem with ssh keys which are established at the start of the session , basically, vm has to be transferred public or private key and whenever it needs to authorize it checks those keys.Now I was connecting through putty on windows, And putty doesn't send any keys to vm. Although google chrome's ssh extension was able to do it ,and through that I was able to run that port forward command too but It didn't help when I again tried to connect vnc or rdp by saying localhost:portnumber , All steps were like those mentioned in the link.But I guess that would have been beneficial if that would have happened through putty. 

Then I thought I would tunnel the rdp through ssh 

Link -http://klinkner.net/~srk/techTips/ssh-remote/

Followed this tutorial  very religiously and boom, I was able to rdp the server via ssh tunnel

I realized that when tunneling through Putty, Putty provides the easy GUI called tunnel option on the left panel to add port forwarding rules.(Although, in previous tuts, I followed the same step but was entering IP addresses and port numbers in a wrong way)

 

5) Future plan & Current Problem - Although, I am successful at making a tunnel through ssh for xrdp , The performance of xrdp was slow, I think it maybe due to the internet speed or maybe xrdp is simply not that good enough as vnc.

Plan - Now I got how this port forwarding thing works in Putty windows, Its just a matter of time that I will reformat the VM instance and tunnel the port 5900 through ssh. And have an uninterrupted vnc session.

 

6) Final Thoughts - I think the problem was server was rejecting my connection due to strange IP address , I guess. I am working in IITB currently so they must be having a different net. Still I am not sure as in this was only the problem.

 

7) Some useless Stuff that got tried - Tried changing proxy settings here, we have two lines in our office ,one is normal university line and other is startup line , But both uses same firewall .So switching was useless. 

 

Thank You once again, Guys.

I am pasting the link again as the final solution -  http://klinkner.net/~srk/techTips/ssh-remote/

 

 

 

 

Yes tried that , It works , the vnc port number got successfully changed ,although I had to add that port number into firewall specified by google  cloud's networking section. (that networking section can be found on console.google.com and on left side menu you will see networking)

But even though I change it to random port number and the service successfully runs there ,still I wasn't able to view it in my vnc viewer by university internet. (while vnc viewer connected when using external net such as my cellular data ,3G I use on my phone).

All pointing to only one inference that port numbers weren't blocked here and it was my wrong assumptions at first hand that ports are blocked.

New update - I was able to do vnc connection via Putty ssh tunnel  while remaining on university net. Although ,its not opening in my desired dimension ,that something seems to be little problematic but trivial,I will take care of it later

This topic is now closed to further replies.
  • Posts

    • Staged. It's a requirement that vehicles are strapped down to the bed. Usually wheel and/or chassis tie downs are used. That appears to just be on the winch.
    • I feel Apple's big problem is the lack of big data to train any AI LLM model. They have statistics on usage, but they don't have the written social media, messaging (they were early adopters of end-to-end encryption), they didn't scrape the Internet before the book companies and new sources were wise. So they have no choice but to use a third party LLM provider. Which ties them in knots with their own stance on security and privacy. In short, they are royally stuffed when it comes to developing an in-house AI.
    • Nothing is black and white. Democracy can suck, just as communism can. The risk is people who blindly think one is vastly superior over the other. Democracy needs a lot to make it work well, and there are many examples around the world of it. Good education, mandatory voting, accessible voting, and removing money from politics are just a few elements that need to be sorted for a functional democracy. The USA is the playbook on what not to do with democracy.
    • Weekend PC Game Deals: Showcase specials, Timeloop freebies, Resident Evils, and more by Pulasthi Ariyasinghe Weekend PC Game Deals is where the hottest gaming deals from all over the internet are gathered into one place every week for your consumption. So kick back, relax, and hold on to your wallets. The Epic Games Store brought the finale of its Mega Sale mystery giveaways this week, and that involved giving away the Bethesda and Arkane title Deathloop alongside the indie title Ogu and the Secret Forest. Deathloop comes in as a time-loop FPS adventure that puts you into the shoes of an assassin that must take down eight targets in a single day to escape the time travel shenanigans. In usual Arkane fashion, each target can be taken care of in multiple ways, and there are supernatural powers that give the player upgrades like teleportation and telekinesis. There is an invasion mechanic for taking down other players in their campaigns too. As for Ogu and the Secret Forest, it's an indie adventure featuring hand-drawn characters and intricate puzzles. The 2D game involves befriending characters across a fantasy land as baby Ogu, with plenty of exploration elements and boss battles available. The Deathloop and Ogu and the Secret Forest giveaways are available on the Epic Games Store until June 12. On the same day, the store will begin a giveaway for the humorous hospital simulation entry Two Point Hospital. Next, we look at a giveaway happening on the Steam store. Gearbox is only a few months away from releasing Borderlands 4, and to prepare some new fans, Borderlands 2 is free to claim on Steam right now. The four-player cooperative title offers a humorous campaign filled with wacky villains, a massive amount of weapons to loot, and skill trees that let you break the balance entirely. The Borderlands 2 giveaway on Steam is live right now. It's slated to come to an end on June 8 at 10am PT. Since it's a new month, the Humble Choice bundle went through its standard refresh earlier this week, releasing eight more games for subscription holders to add to their library. This time, you can grab Warhammer 40K: Boltgun, Legacy of Kain Soul Reaver 1 and 2 Remastered, Nobody Wants to Die, Dungeons of Hinterberg, Tchia, Sker Ritual, Biped, and Havendock. It will cost you $12 to get all eight games. As a month-long Humble Choice Bundle, though, you can ponder the contents until July 1, when a new selection of games will replace these ones. In the regular bundle space, the Humble Store is also celebrating showcase season with its IGN Live bundle. This carries Slay the Spire, Potion Craft: Alchemist Simulator, and Bloodroots in the starting tier for $10. Next, paying $16 gets you copies of Art of Rally, Old World, and Black Book. Lastly, paying the full $22 for the bundle will add on copies of The Medium and Wartales. The bundle has a two-week counter attached to it, so you have plenty of time to decide on it. Big Deals Alongside plenty of showcase-related sales, massive franchise discounts from 2K, Capcom, Techland, and more are currently available for you to check out. Here are our hand-picked big deals for this weekend: Lies of P – $29.99 on Steam Company of Heroes 3 – $29.99 on Steam Sekiro: Shadows Die Twice - GOTY Edition – $29.99 on Steam Dragon's Dogma 2 – $29.39 on Steam Satisfactory – $27.99 on Steam Diablo IV – $27.49 on Steam Another Crab's Treasure – $20.99 on Steam Resident Evil 4 – $19.99 on Steam Tetris Effect: Connected – $19.99 on Steam Dying Light 2 Stay Human: Reloaded Edition – $19.79 on Steam No Man's Sky – $19.62 on Gamebillet Chained Echoes – $18.74 on Steam Starship Troopers: Terran Command – $17.99 on Steam The Outlast Trials – $15.99 on Steam Tales from the Borderlands – $14.99 on Steam Phasmophobia – $14.99 on Steam Divinity: Original Sin 2 - Definitive Edition – $13.49 on Steam Gotham Knights – $11.99 on Steam Receiver 2 – $9.99 on Steam Resident Evil Village – $9.99 on Steam Goat Simulator 3 – $9.89 on Steam Borderlands Game of the Year Enhanced – $9.89 on Steam The Outer Worlds – $9.89 on Steam Dorfromantik – $9.79 on Steam Turnip Boy Robs a Bank – $9.74 on Steam Ni no Kuni II: Revenant Kingdom – $9.59 on Steam Batman: Arkham Collection – $8.99 on Steam Escape Academy – $8.00 on Steam Resident Evil 7 Biohazard – $7.99 on Steam Inscryption – $7.99 on Steam Devil May Cry 5 – $7.49 on Steam Watch_Dogs 2 – $7.49 on Steam Suicide Squad: Kill the Justice League – $6.99 on Steam Control Ultimate Edition – $5.99 on Steam Injustice 2 Legendary Edition – $5.99 on Steam Manifold Garden – $4.99 on Steam Cultist Simulator – $4.99 on Steam Watch_Dogs – $4.99 on Steam Dragon's Dogma: Dark Arisen – $4.79 on Steam ARK: Survival Evolved – $4.49 on Steam Batman: Arkham Origins – $3.99 on Steam Dying Light – $3.99 on Steam PAYDAY 2 – $3.29 on Steam WRC 9 FIA World Rally Championship – $2.99 on Steam Alan Wake – $2.99 on Steam Borderlands 3 – $2.99 on Steam Among Us – $2.99 on Steam Hitman: Absolution – $1.99 on Steam Borderlands 2 – $0 on Steam Ogu and the Secret Forest – $0 on Epic Store Deathloop – $0 on Epic Store DRM-free Specials The GOG store's latest DRM-free specials for this weekend are touting Atari classics, story-rich games, and much more. Here are some highlights: Atari 50: The Anniversary Celebration - $19.99 on GOG The Thaumaturge - $19.24 on GOG Turok 3: Shadow of Oblivion Remastered - $17.99 on GOG STAR WARS: Dark Forces Remaster - $16.49 on GOG INDIKA - $16.24 on GOG Blood West - $12.49 on GOG Shadowrun Trilogy - $10.07 on GOG Disco Elysium - The Final Cut - $9.99 on GOG Pathologic 2 - $6.99 on GOG Tacoma - $6.59 on GOG Little Nightmares - $4.99 on GOG RollerCoaster Tycoon 3: Complete Edition - $4.99 on GOG Gone Home - $4.94 on GOG Blade Runner - Enhanced Edition - $2.49 on GOG Blood: Fresh Supply - $2.49 on GOG SiN Gold - $1.99 on GOG The Wheel of Time - $1.49 on GOG RollerCoaster Tycoon Deluxe - $1.19 on GOG Pirates! Gold Plus - $1.19 on GOG Sid Meier's Colonization - $1.19 on GOG POSTAL 2 - $0.99 on GOG Keep in mind that availability and pricing for some deals could vary depending on the region. That's it for our pick of this weekend's PC game deals, and hopefully, some of you have enough self-restraint not to keep adding to your ever-growing backlogs. As always, there are an enormous number of other deals ready and waiting all over the interwebs, as well as on services you may already subscribe to if you comb through them, so keep your eyes open for those, and have a great weekend.
    • I too am left of centre in my politics, and not from the USA. But to understand what enables this sort of wealth means you have to understand the American mentality and generational politics, and what that means. My point was that its sort of ironic that he's giving away much if it to another country, because of the prevalence of individualism and tax system in the USA. People who subscribe to that are probably the ones shocked that he's giving away his wealth, as they're the ones who say "you can do whatever you want to with your money!"
  • Recent Achievements

    • First Post
      Mr bot earned a badge
      First Post
    • First Post
      Bkl211 earned a badge
      First Post
    • One Year In
      Mido gaber earned a badge
      One Year In
    • One Year In
      Vladimir Migunov earned a badge
      One Year In
    • Week One Done
      daelos earned a badge
      Week One Done
  • Popular Contributors

    1. 1
      +primortal
      489
    2. 2
      snowy owl
      255
    3. 3
      +FloatingFatMan
      250
    4. 4
      ATLien_0
      223
    5. 5
      +Edouard
      187
  • Tell a friend

    Love Neowin? Tell a friend!