1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to set up SSH server

Discussion in 'Tomato Firmware' started by Danielink, Jul 17, 2007.

  1. Danielink

    Danielink LI Guru Member

    I have been checking out the forums and doing Google searches to get info about setting up secure remote access between my work and home PCs. Presently I have a working network between my home PC (Win XP Pro) and my wife's (Win 2000 Pro) using Tight VNC. I am still a little confused about how best to set this up as a secure network; this will be even more important when I try to make the connection to my home PC from work (also Win 2000 Pro). Just a few questions for you who have experience with this:

    (1) Would I be better to use Ultra VNC, or would Tight VNC be just as good? (2) What is the difference between SSH and VPN tunneling, and which would be better to use with one of the VNC programs (or are they the same thing)? For that matter, is there a better way to go than the VNC programs? (3) How does the program PuTTY fit into the mix? I have actually downloaded & installed it on both my wife's and my PCs at home, but am not sure whether it's necessary, or does that depend on which remote access route I decide to use? BTW, I have a WRT54GL router, currently flashed with Tomato 1.07. Thanks for any help you can provide. :biggrin:
     
  2. ifican

    ifican Network Guru Member

    Well several things you need to do first. 1) you need to figure out what you want from the connection 2) you need to determine if what you want to do is even possible from work. Once you get this part squared away it will be much easier to help you figure out what you need and how you can go about testing or making it happen.

    On a side note, if you and your wife's machine are both connected at home then really isnt a need to run vnc or any other program to access between them, once you setup file sharing and allow the connection through whatever firewall software you are using on the machine it should be good to go.
     
  3. Danielink

    Danielink LI Guru Member

    I know that setting up a connection from work to home is possible, although my comany has imposed some restrictions, e.g., I used to be able to connect using LogMeIn, but our IS Dept. ended up blocking the LogMeIn website ... don't know if it has more security vulnerabilities than other sites/programs. And, yes, I can access my wife's files and vice versa thru File Sharing, but I wanted to set it up so that I could actually view each PC's screen from the other PC (which I can do now using Tight VNC). I would like to be able to access my home PC from work so that I can check e-mail, etc. I just want to make sure the connection is secure. I'm still open to any suggestions as to which method would be best. I think right now I'm just a little overwhelmed because I'm not familiar with some of the programs and techniques that are available for setting up network security. Also, I have gone into Tomato's setup menus to see if there is anything I need to do there (port forwarding, etc.), and would welcome any advice here, since I'm fairly new to this firmware.
     
  4. ifican

    ifican Network Guru Member

    Ok good enough info now to start and dig into this. You can however view your wifes machine and vice versa at home with RDP or remote assistance, I believe its less overhead than vnc, though vnc is a small app so its hard to say.

    From work, there are lots of ways to do it some easier then others. You can setup vnc and tunnel it through ssh, however if i remember right vnc has the ability to connect via a secure connection as well as does RDP by itself. So the easiest for you to do is check with your network admins and see if they allow port 3389, if so you can RDP to your machines and you will not have to install any program. If you want to get more complicated you can search for tunneling RDP or tightvnc or vnc for that matter through ssh.
     
  5. Danielink

    Danielink LI Guru Member

    I know that Ultra VNC has built-in encryption thru DSM plugins, and that would be OK. I'm not sure if Tight VNC offers the same feature. I'm not looking to set up anything complicated, although I'm interested in learning about the "nuts-and-bolts" of remote security. I know there are links in this forum for how to set up SSH server, and how to tunnel to the server from clients. I'm still a litle unsure about how to tie all the necessary steps together, and would welcome any recommendations on what would be simple but effective. Would SSH tunneling be appropriate in my situation, and if so, how hard would it be to set up?
     
  6. ifican

    ifican Network Guru Member

    I dont know how hard persay because i have never had a need to set it up though i have read through the steps and it doesnt seem to bad. In your case though, if the program you want to use has encryption built in there is no need to tunnel it. The whole premise of tunneling something through ssh or ip sec, is to encrypt the unencrypted traffic. Put it this way, i use ssh to connect to command line on devices at home when i am away so i can make changes, i use ipsec tunnels to share unencrypted data between family members and i use RDP sometime over the tunnel and sometimes just over the net, depending on where i am at the time and what i need to get to.
     

Share This Page