![]() ![]() To share another computer's screen, the target computer must be running remote desktop software (technically, a remote desktop server, since this software listens to incoming requests). Don't leave the door open behind you! Barrier 3: The computer's screen share settings If you have a user override their computer's default firewall, remember to close the session by instructing them to re-enable the default firewall zone. ![]() Power users can instead reload the firewall rules manually : $ sudo firewall-cmd -reload Alternatively, have them add either one of the rules you added to the network firewall (if your user is on Linux).Ī reboot is a simple way to ensure the new firewall setting is instantiated, so that's probably the easiest next step for your user. Do this only for the duration of the screen sharing session. ![]() To remedy this problem, have the user either lower their firewall or, on Fedora and RHEL, place their computer into the trusted zone. Your request to view their screen may successfully pass through the network firewall only to be silently dropped by the target computer's firewall. This means that when you're trying to access their computer for screen sharing, their firewall may block incoming remote connection requests without the user even realizing it. Others, though, blissfully trust their default settings. Users who are mindful of security may actively manage their firewall. Most personal computers have built-in firewalls. If network reconfiguration isn't possible, see the section "Screen sharing through a browser." To ensure the firewall changes were made, reload the rules: $ sudo firewall-cmd -reload add-rich-rule='rule family="ipv4" source address="93.184.216.34" service name=vnc-server accept' For example, using an example IP address of 93.184.216.34, a rule to allow VNC traffic is: $ sudo firewall-cmd \ If you're not comfortable allowing all VNC traffic into the network, add a rich rule to firewalld in order to let in VNC traffic from only your IP address. $ sudo firewall-cmd -add-service=vnc-server -zone=example-zone If the network firewall is on a Linux server you can access, you can broadly allow VNC traffic to pass through using firewall-cmd, first by getting your active zone, and then by allowing VNC traffic in that zone: $ sudo firewall-cmd -get-active-zones The most common, and most universal, protocol for screen sharing is VNC. In order to pass through the firewall and access a computer remotely, your network firewall must be configured so that the appropriate port for the remote desktop protocol you're using is accessible. Barrier 1: The network firewallĪ network firewall is the target computer's LAN entry point, often a part of the router (whether an appliance from an Internet Service Provider or a dedicated server in a rack). ![]() Every network and every computer is configured uniquely, but here are some possible solutions. Specific instruction on how to get past each barrier is impossible. Usually, there are up to 3 blockades for accessing a remote machine: It should be difficult to get into a computer without explicit consent. Half the battle of successfully screen sharing is getting into the target computer. If you need to see the desktop of a computer that you're not physically in front of, there are plenty of tools for the job. Linux is famously capable of being managed without seeing a GUI, but that doesn't mean you have to manage your box that way. Likewise, anyone who's ever maintained a server located in a loud and chilly data center-or across town, or the world-knows that often a remote viewer is the easiest method for viewing distant screens.
0 Comments
Leave a Reply. |