Create firewall rule to allow VNC over SSH
-
Hi all,
I'm using pfSense firewall to protect two hosts that are accessible through VNC connection.
Currenlty the firewall permits VNC connections from a specific IP address. NAT rules have been applied to perform port forwarding to VNC port 5900. For example,vnc://IP_ADDRESS:PORTSince I want to improve the connection security from my machine to the hosts, I would like to enable VNC over SSH.
Since I'm not expert on this subject, are you able to give me some hints on how to achieve the tunneling levereaging pfSense firewall rules.
Waiting for a reply I thank you for your support.
Thanks,
Lorenzo -
@flexibleapps VNC over SSH is more accurately VNC through SSH. So you'd just need NAT and WAN firewall rules forwarding and allowing port 22 (or whatever port(s) you use for your SSH connections; you'll need 2 ports if you're doing this with 2 LAN hosts). But since you already created port forward and firewall rules for VNC, it sounds like you basically already know what to do. Just need to (for example) forward port 2222 to LAN host 1 port 22 and forward port 2223 to LAN host 2 port 22, make corresponding firewall rules allowing those inbound connections on WAN, and then configure VNC accordingly.