Apple Remote Desktop - NAT Question

[melvin]

Hi have just started using Apple Remote Deskop, have configured the following port forwarding congigurations.

Config 1: 3283 on UDP forwarding traffic to 192.168.1.18
Config 2: 3282 on TCP forwarding traffic to 192.168.1.18

When making any type of connection through NAT, it is usually only possible to direct (port map) a particular type of traffic to a single IP address on your private network. This means you may only be able to control a single NAT client when using Remote Desktop from a public IP address.

This is my problem as I would like to control several machines on the network, but at the moment can only control the machine the traffic is forwarding to 192.168.1.18.??

Any help would be great, cheers

 

[michaelsanford]

Yes, in fact, and it's an old trick.

I've been struggling myself with the inherent insecurities in my university's WiFi network (like logging in to phpmyadmin--transmits my shell password openly).

The answer : ssh tunnels. I wrote a FAQ on this ( http://www.macosx.com/forums/showthread.php?t=43423 ) a little while ago.

What you can then do is make a forward to each computer on your remote LAN, and map it to consecutive local ports. Then just add the computers as 127.0.0.1:45001, 127.0.0.1:45002, etc.

I've never tried this since I only have one Apple computer on my LAN (my laptop travels with me) but I assume it should work...

EDIT
This was, by the way, with security in mind. You can also just forward the unassigned ports on your router (for unassigned ports check here http://www.iana.org/assignments/port-numbers so you don't conflict with existing apps, 24554-34676 are currently unassigned) and then connect to your router with the various ports you've forwarded.