bom dia!
Estou com problemas para criar um tunnel ssh para passar o vnc mas nada faz funcionar,
alguém sabe como liberar o trafego tigervnc por tunnel ssh ?
Obs.: estou usando o Fedora 16
minha configuração:
1 > /proc/sys/net/ipv4/ip_forward####### SSH "" > /etc/ssh/sshd_config
"# $OpenBSD: sshd_config,v 1.82 2010/09/06 17:10:19 naddy Exp $" >>
/etc/ssh/sshd_config "# This is the sshd server system-wide configuration file.
See" >> /etc/ssh/sshd_config "# sshd_config(5) for more information."
>> /etc/ssh/sshd_config "# This sshd was compiled with
PATH=/usr/local/bin:/bin:/usr/bin" >> /etc/ssh/sshd_config "# The strategy
used for options in the default sshd_config shipped with" >>
/etc/ssh/sshd_config "# OpenSSH is to specify options with their default value
where" >> /etc/ssh/sshd_config "# possible, but leave them commented.
Uncommented options change a" >> /etc/ssh/sshd_config "# default
value." >> /etc/ssh/sshd_config "Port 22" >>
/etc/ssh/sshd_config "ListenAddress 0.0.0.0" >> /etc/ssh/sshd_config
"Protocol 2" >> /etc/ssh/sshd_config "HostKey
/etc/ssh/ssh_host_rsa_key" >> /etc/ssh/sshd_config "HostKey
/etc/ssh/ssh_host_dsa_key" >> /etc/ssh/sshd_config
"KeyRegenerationInterval 5h" >> /etc/ssh/sshd_config "ServerKeyBits
1024" >> /etc/ssh/sshd_config "SyslogFacility AUTH" >>
/etc/ssh/sshd_config "LogLevel INFO" >> /etc/ssh/sshd_config
"PermitRootLogin yes" >> /etc/ssh/sshd_config "StrictModes yes"
>> /etc/ssh/sshd_config "RSAAuthentication yes" >>
/etc/ssh/sshd_config "PubkeyAuthentication yes" >> /etc/ssh/sshd_config
"RhostsRSAAuthentication no" >> /etc/ssh/sshd_config
"HostbasedAuthentication no" >> /etc/ssh/sshd_config "IgnoreRhosts
yes" >> /etc/ssh/sshd_config "PasswordAuthentication yes" >>
/etc/ssh/sshd_config "ChallengeResponseAuthentication no" >>
/etc/ssh/sshd_config "GSSAPIAuthentication yes" >> /etc/ssh/sshd_config
"GSSAPICleanupCredentials yes" >> /etc/ssh/sshd_config "UsePAM
yes" >> /etc/ssh/sshd_config "# Accept locale-related environment
variables" >> /etc/ssh/sshd_config "AcceptEnv LANG LC_CTYPE LC_NUMERIC
LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES" >> /etc/ssh/sshd_config
"AcceptEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT" >>
/etc/ssh/sshd_config "AcceptEnv LC_IDENTIFICATION LC_ALL LANGUAGE" >>
/etc/ssh/sshd_config "AcceptEnv XMODIFIERS" >> /etc/ssh/sshd_config
"AllowTcpForwarding yes" >> /etc/ssh/sshd_config "X11Forwarding
yes" >> /etc/ssh/sshd_config "X11DisplayOffset 10" >>
/etc/ssh/sshd_config "PrintMotd yes" >> /etc/ssh/sshd_config
"PrintLastLog yes" >> /etc/ssh/sshd_config "TCPKeepAlive yes"
>> /etc/ssh/sshd_config "Compression yes" >> /etc/ssh/sshd_config
"PermitTunnel yes" >> /etc/ssh/sshd_config "Banner
/etc/ssh/banner.txt" >> /etc/ssh/sshd_config
"Subsystem sftp /usr/libexec/openssh/sftp-server" >> /etc/ssh/sshd_config
"Bem vindo ao Teste" >> /etc/ssh/banner.txt##### IPTABLES ""
> /etc/sysconfig/iptables "# Firewall configuration written by
system-config-firewall" >> /etc/sysconfig/iptables "# Manual
customization of this file is not recommended." >> /etc/sysconfig/iptables
"*filter" >> /etc/sysconfig/iptables ":INPUT ACCEPT [0:0]"
>> /etc/sysconfig/iptables ":FORWARD ACCEPT [0:0]" >>
/etc/sysconfig/iptables ":OUTPUT ACCEPT [0:0]" >> /etc/sysconfig/iptables
"-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT" >>
/etc/sysconfig/iptables "-A INPUT -p icmp -j ACCEPT" >>
/etc/sysconfig/iptables "-A INPUT -i lo -j ACCEPT" >>
/etc/sysconfig/iptables "-A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j
ACCEPT" >> /etc/sysconfig/iptables "-A INPUT -m state --state NEW -m tcp
-p tcp --dport 5900:5905 -j ACCEPT" >> /etc/sysconfig/iptables "-A FORWARD
-i eth0 -p tcp --dport 5900:5905 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT"
>> /etc/sysconfig/iptables "-A FORWARD -i eth0 -p udp --dport 5900:5905 -m
state --state NEW,ESTABLISHED,RELATED -j ACCEPT" >> /etc/sysconfig/iptables
"-A INPUT -j REJECT --reject-with icmp-host-prohibited" >>
/etc/sysconfig/iptables "-A FORWARD -j REJECT --reject-with
icmp-host-prohibited" >> /etc/sysconfig/iptables "COMMIT" >>
/etc/sysconfig/iptables
e conecto do cliente
ssh -f -N -L 5900:localhost:22 userlocal(a)x.x.x.xe conectando vncviewer localhost:1 ou 2 ou
3 ...volta a resposta TigerVNC Viewer for X version 1.1.0 - built Nov 11 2011
14:37:44Copyright (C) 1999-2011 TigerVNC Team and many others (see README.txt)See
http://www.tigervnc.org for information on TigerVNC.vncviewer: unable to open display
""
Desde ja fico grato... Att Anderson