[clue-tech] remote access to Windows network from Linux

Dennis J Perkins dennisjperkins at comcast.net
Wed Sep 22 20:10:36 MDT 2010


I was given the IP address of the VPN server, so apparently it is
necessary.

I got the IP addresses of the two computers that I need to connect to.
I can ping both of them.  I see our DNS servers in /etc/resolv.conf.

On Wed, 2010-09-22 at 16:52 -0600, David L. Willson wrote:
> Nate: Turning off ping responses ~does~ "add security", just like
> running ssh on a non-default port, and not returning specific version
> numbers for PHP, and other things of that sort. Not providing more
> info/access than needed is part of a good security policy.  Turning
> off ping responses ~might~ be appropriate, depending on the
> circumstances.
> 
> OTOH, once on the same IP subnet, an arp request is rarely (never)
> declined, and so might make a better test.
> 
> Dennis: Are you sure the VPN needs to be up to get to the TS? There
> are an increasing number of networks with TS available directly to the
> Internet.
> 
> When you get the VPN up, what does 'ifconfig' look like? How about 'ip
> route' or 'netstat -rn'? Does /etc/resolv.conf get modified? Does the
> name of your TS end with .local? Can you dig it (the TS name)
> (before/after) the VPN is up?
> 
> ----- "Nate Duehr" <nate at natetech.com> wrote: 
> > On 9/22/2010 8:04 AM, dennisjperkins at comcast.net wrote: 
> 
>         > I'm trying to access my company's Windows network from my
>         Linux box.  I am able to connect to the VPN network using
>         networkmanager-pptp, but that is as far as I get.  I have an
>         IP address for the terminal server but Gnome's Remote Desktop
>         Viewer can't connect to it.  I don't know if I need to do
>         something else first, such as add a gateway.  Is anyone
>         familiar with this?  Any suggestions?
>         > 
> 
> 
> > Basics first... can you ping the box you want to talk to?*
> > 
> > * Assuming some doofus hasn't blocked ICMP ECHO REQUEST packets on
> your internal work network, as if that adds "security" or something
> silly like that.
> > 
> > Nate 
> > 
> > _______________________________________________ clue-tech mailing
> list clue-tech at cluedenver.org
> http://cluedenver.org/mailman/listinfo/clue-tech
> 
> _______________________________________________
> clue-tech mailing list
> clue-tech at cluedenver.org
> http://cluedenver.org/mailman/listinfo/clue-tech



-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://cluedenver.org/pipermail/clue-tech/attachments/20100922/0953a123/attachment-0001.html 


More information about the clue-tech mailing list