Remote Adminstrator with a firewall

  • Thread starter Thread starter Hubert
  • Start date Start date
H

Hubert

I installed the soft Radmin (Remote Administrator) on my computer at
work (Windows 2000, on a LAN, I'm not an Administrator) and at home
(Windows XP Home) and it works fine : from work, I can take control of
my computer at home and do really everything. Yet, I've got a problem
: I didn't dare put the firewall on at home. I didn't try, but I'm
almost sure it wouldn't work. So, my questions are :
1°) how can I change XP firewall to accept the entry of Radmin?
2°) after all, is it really so important to put the firewall on?
I must say I'm with an ADSL connection in France.
Thank you for your advice.
 
Yes--it is VERY important to have the firewall on.

You will be able to configure the firewall to allow Radmin traffic in, I
believe.

Looking here:

http://www.radmin.com/support/faq.html

I find that Radmin's default port is 4899.

On your XP machine, go to properties of the Internet Connection, advanced
tab, settings button.

Click Add.
For description, put in Radmin
Put in the netbios name or internal IP address of the XP machine Radmin is
running on.
External port number and Internal port number should be the same--4899.
TCP
OK, OK.

This gives you a new definition allowing unsolicited incoming traffic on
port 4899, TCP, through your firewall.

I believe this will do what you need, but check carefully with the Radmin
folks that the port number I've given is correct.
 
Good questions--I wasn't clear.

This is all in relation to your machine at home--you don't have control over
the connection at work.

You should have the firewall enabled at home. You can have it enabled, and
still be able to reach it from work, if you configure the firewall to allow
traffic on port 4899 TCP in. The netbios name or IP address would be those
of your home machine (i.e. the one which the firewall is running on!) This
seems redundant, but it is possible for such a firewalled machine to be a
gateway for a dozen or so other machines, so the ability is present to allow
forwarding of external traffic to other machines on the network.

The reason the firewall is important is apparent in the news every day since
August 11th or so. Previously unknown security vulnerabilities are
uncovered regularly in any complex computer OS. The vendors issue patches,
and try to publicize this. The worm writers are getting quicker at
exploiting the vulnerabilities, and may, at some point, manage to exploit
one before a patch is created. The Firewall prevents unsolicited traffic
from outside your home (i.e. traffic not in response to a request from your
machine) from entry. This is increasingly an absolute essential.
 
4ax.com:

2°) after all, is it really so important to put the firewall on?
I must say I'm with an ADSL connection in France.
Thank you for your advice.
Click to expand...

Take a look through all the newsgroups for prople asking about thier
systmes rebooting with NT/Authority errors and MSBlast and tell us if you
think a Firewall is really nessacary...

If those people had been using a firewall and had patch thier systems,
they woouldn;t have been hit by the Worm.

David
 
Le Sat, 23 Aug 2003 11:54:00 -0400, "Bill Sanderson"
Good questions--I wasn't clear.

This is all in relation to your machine at home--you don't have control over
the connection at work.

You should have the firewall enabled at home. You can have it enabled, and
still be able to reach it from work, if you configure the firewall to allow
traffic on port 4899 TCP in. The netbios name or IP address would be those
of your home machine (i.e. the one which the firewall is running on!) This
seems redundant, but it is possible for such a firewalled machine to be a
gateway for a dozen or so other machines, so the ability is present to allow
forwarding of external traffic to other machines on the network.
Click to expand...
<snip>

Right, I think everything allright now, as I put the firewall on,
checked RAdmin uses port 4899 by default and set up the firewall
parameters to allow Radmin by putting the name of my computer (the one
I declared at the beginning and I've just checked. Can't use the IP
address as it is not a fixed one.) and both 4899 external and internal
port number.
Thanks a lot. I'll know if it works tomorrow.
 
Le Sat, 23 Aug 2003 11:54:00 -0400, "Bill Sanderson"
Good questions--I wasn't clear.

This is all in relation to your machine at home--you don't have control over
the connection at work.

You should have the firewall enabled at home. You can have it enabled, and
still be able to reach it from work, if you configure the firewall to allow
traffic on port 4899 TCP in. The netbios name or IP address would be those
of your home machine (i.e. the one which the firewall is running on!) This
seems redundant, but it is possible for such a firewalled machine to be a
gateway for a dozen or so other machines, so the ability is present to allow
forwarding of external traffic to other machines on the network.
Click to expand...

Well, here it is : we're on Monday morning, I'm at work and it works
fine. Thank you ever so much.
 
Hubert said:
Well, here it is : we're on Monday morning, I'm at work and it works
fine. Thank you ever so much.
Click to expand...

Terrific - and your home machine is protected against worms such as
MSBLASTER (more specifically - future worms exploiting vulnerabilities which
have not yet been discovered or patched.)
 
Using VNC

Hi Support,

It;s nice to Talk to u people. This Naveen from bangalore working as a customer Support in a BPO company. I have some doubts to be clarified from ur end.

As ur aware of VNC software, kindly let me know some thing about it. And question is

1. Suppose we want to connect a system at Mumbai from bangalore, and we have both the system installed with VNC software. we are not able to access the system. pls let me know if any option should be enabled in the server or should we sign up with any other module in VNC.

2. The Ip address used to connect thru R-admin (which starts from the range of 200.) shuld be the same Ip for access from VNC or can be the local machine Ip address.

Waiting for ur advise on this above matter.

regards,
Naveen.
 
Back
Top