Previous 1 2 3 Next 30 Replies Latest reply: Jul 31, 2007 3:44 AM by Rick Van Vliet
Erroll Level 1 Level 1 (10 points)
Can somebody walk me through, or steer me to an online tutorial on, the following:

I want to connect to my work computer from my home computer. Both are Macs running 10.4.10. The work computer (a MDD Dual G4) is on an airport extreme network, and my home computer (17" macBook Pro) is on a wireless network with a NetComm router. 'Remote Login -SSH' is enabled on the work computer.

I got the work computer's IP address from:
and just tried to 'Connect to server' from the finder but the connection fails. I also tried to connect using SSH using the instructions here:
but the connection also failed. I'm unsure if I have to download and install something called Kerberos, for this to work.

I suspect I may have to configure one or both routers to get this to work, but have no idea where to start. Can anyone help?

Thanks in advance,
Steve = : ^ )

17" MacBook Pro, Mac OS X (10.4.10)
  • Camelot Level 8 Level 8 (46,480 points)
    You shouldn't have to configure anything on your home router, but you will on the one at work.

    The office network is almost certainly denying incoming connections (from the internet). You may be using a NAT-based router, or a firewall, but either way incoming connections are blocked.

    The solution is going to depend on how your network is configured. If you're using a simple NAT-based router then you need to setup port forwarding to forward connections on port 22 to your desktop Mac.
    If you're using a firewall, you'll need to add a firewall policy that allows incoming traffic.

    In both cases you'll probably need to configure the desktop with a static IP address so that the port forwarding will be consistent - it's no good forwarding the SSH connection to today if the desktop moves to .11 tomorrow because it's using DHCP.

    The alternative (and somewhat better) solution is to implement a VPN connection. This enables your machine at home to appear just like any other machine on the office LAN, giving you full access to al the resources at the office (including printers, file servers, etc.). It'll take a little more to setup, but offers additional advantages that might be useful.
  • Rick Van Vliet Level 5 Level 5 (6,385 points)
    (Camelot's answer is better than the one I just deleted here)


    Message was edited by: Rick Van Vliet
  • Erroll Level 1 Level 1 (10 points)
    Thanks. The router at work is an Airport Extreme Base Station.

    Setting up a VPN sounds more elegant but, as you say, I'm going to need more help. Do you know of a tutorial somewhere? Is there any good free VPN software fro the Mac. Do you have a recommendation if I need to buy something?

    Thanks in advance,
    Steve = : ^ )
  • Erroll Level 1 Level 1 (10 points)
    I've taken my MacBook to work. In 'Port Mapping' I've configured the Airport Extreme base station to pass Public Port 22 to Private Port 22 at Private IP Address which is the IP address given in System Preferences>Network>Airport>TCP/IP on the work computer.

    The 'Internet' section of Airport Utility shows 'IP address' as (which is the same address that I get from the website which tells me the work computer's IP address) and 'Router address' as 220.239.ab.x.

    The work computer's firewall is configured to allow Personal File Sharing, Personal Web Sharing and Remote Login.

    When I try to 'Connect to Server' from the Finder of my MacBook and type in (the router's address), the connection times out while "Looking up"

    What am I still missing?

    Thanks in advance,
    Steve = : ^ )
  • Rick Van Vliet Level 5 Level 5 (6,385 points)
    If you've got both computers inside the same LAN (10.0.1.x)...
    try this SSH from MB (it should have an IP of 10.0.1.xy, also)
    and attempt a SSH to
    Do not try connecting from the inside (10.0.x.x) to your outside (220.239.x.x) IP address

    Unless we're missing something.
    Working inside the LAN, all PC's should be in the 10.0.1.x range.
    (the router IP in mac's netconfig panel should be
    That main router's public Ip (outside) will be

    Is the router the AE Base Station, or is there another device?
    You have several 220.239.ab.??? numbers
    ab.x and
    are these really the same, or are they different?
  • Erroll Level 1 Level 1 (10 points)
    Thanks again. I can connect to the work computer as from the Finder (Is this an SSH connection?) and also selecting by SSH in Terminal. However, once logged in via Terminal, I don't know how to access the disks attached to the work computer; in the Finder they offer themselves up to be mounted.

    Yes, the AE base station is the router. In the 'Internet' section of Airport Utility it lists "IP address" as and "Router address" as 220.239.ab.x", i.e. two digits shorter than "IP address", but otherwise the same.

    Steve = : ^ )
  • Rick Van Vliet Level 5 Level 5 (6,385 points)
    In the LAN, connecting to 1.10 using the probably not SSH. You're connecting to the 'server' using SMB or AFP.

    If you open a Terminal window, and type:
    password<enter> or something...
    You are connected in Terminal mode, and navigating the disks is a completely different process than you are accustomed to in Finder.
    (not really sure what you mean "selecting SSH in terminal". I can't find that selection)

    May we ask:
    1) what are you trying to do?
    2) what do you expect to happen when you do connect
    3) what actually does happen?
    Once we figure out what you need to accomplish, and if this works properly when you and this 1.10 computer are both inside the work network...then we'll try to help you figure how to connect from the outside.
  • Rick Van Vliet Level 5 Level 5 (6,385 points)
    Oh-your original question was 'how to connect via SSH'.
    SSH is remote access and Terminal control. It's very similar to Telnet, except SSH is more secure.
    SSH means "Secure SHell"
    (shell means terminal)

    Are you still sure you need this function?
  • Erroll Level 1 Level 1 (10 points)
    Terminal>File Menu>Connect to Server... has 'Secure Shell (ssh)' as the first menu item.

    At the moment I travel several days a week to work, sit at a computer and access files on another computer via the LAN. I copy files backwards and forwards as well as access the iTunes library and a Filemaker database on the other computer.

    I'm trying to work from home to avoid the travel. At the very least, I have to be able to connect to the work computer, mount it's disks, and down/upload files. I'll still need to go to work one day a week, so can make a weekly copy of the iTunes library and the Filemaker database and take these home. However, if I can access them in real-time (especially network to the FileMaker database) via a VPN, that'd be icing on the cake.

    To answer your questions:
    I expect to be able to mount the remote computer's drives on my desktop and copy files back-and-forth. I'd prefer it if this was a secure connection. I can mount the drives in Finder (not secure), but when I connect via SSH using Terminal, I don't then know how to access the drives. Maybe there's an OS X SSH client I can use which will make the whole thing obvious; I know nothing about UNIX commands.

    I'm assuming that, if I can set up a VPN, I won't have to worry about security.

    Steve = : ^ )
  • Rick Van Vliet Level 5 Level 5 (6,385 points)
    (thanks for pointing that SSH menu item
    I usually just type it on the command line.

    Consider FTP for file transfer.
    Cyberduck -- Fast, Free and excellent. (might do SFTP)
    Fetch, also excellent, but costs.
    There are other methods called SFTP (secure FTP)
    Look at FUGU app for that (also free)
    Ftp/SFTP is just for FileTransfer...and this might be the best way to go.

    If this is part of the job description, and the business will pay for your remote access...look at Timbuktu, for secure remote desktop...this is an excellent software.

    SSH is not really what you're describing. FileTransfer is. Or remote access.

    And by its nature, SSH (shell) is UNIX command line. I don't know of a GUI that replaces SSH.
  • BDAqua Level 10 Level 10 (121,190 points)
    Or possibly look into VNC, (most likely not as good as VPN for your purposes... but throwing it out)...
  • Erroll Level 1 Level 1 (10 points)
    Thanks. I see now that I don't need to 'log in' to the computer at work, just read and write to disks attached to it, without the whole world getting access. I definitely don't need remote desktop: much of the time someone else will be working on the computer while I'm remotely accessing it's connected drives from home.

    I guess ftp (or sftp) is all I need to pass files backwards and forwards. Can't the Finder do this? If not, do I need to install software on both computers? Does the computer at work need to be set up as an 'ftp server'?

    Do you think it it's worth the effort of setting up a VPN, to be able to read/write to the Filemaker database and play iTunes tracks remotely? Is it a big job?

    Thanks again,
    Steve = : ^ )
  • Erroll Level 1 Level 1 (10 points)
    I can see that I may have given the wrong impression. I don't want to log in remotely: someone else will be working on the computer most of the time. I need to access the drives attached to the computer, copy files backwards and forwards and, if it's easy, network to an iTunes library and a FileMaker database.

    Steve = : ^ )
  • Jeffrey Lee Level 4 Level 4 (2,500 points)
    What your missing is that "Connect To Server" uses port 548 and 427.

    You are 99% there!!

    Go back to the router at work, and do port forwarding on those two ports to the IP address of your desktop, just as you've done with port 22.

    Now when you "Connect To Server" from home, the request, which is coming into the router on those two ports, get sent to your desktop, and since you've already enabled your desktop for File Sharing.... your done!

    You should be asked for a username and password to log in, and then you'll be asked which items you want to use.. either the entire drive, or just your home folder.
Previous 1 2 3 Next