REMOTE LOGIN
I want to login to my system from work. What is the best path to take?
An Apple, Mac OS X (10.5.1)
What system? Your home computer? Multiple computers on your home LAN? Or something different? What do you want to be able to do once you log into "your system?"
Typically, if you are just talking a single computer at home, I would port forward port 22 through your home router to the computer to which you wish to connect. Turn on remote login in system preferences in the home computer. This will give you "secure shell" command line access in Terminal.
If you want to be able to remotely mount the home computer on your desktop so that you can drag & drop files between them, then in the home computer, turn on AFP file sharing. Unless you have to access from a Windoze box, do not turn on smb. Then you add a "port tunneling" directive to your ssh login command so you tunnel this otherwise non-secure service through the encrypted secure shell tunnel. There are numerous posts in this forum that go into details about how to do that. If you have difficulty locating them, I or others can probably help you locate them.
If you want to do VNC, I'm not sure of all the nuances involved with Leopard in order to do that. In Tiger, you had to enable Apple Remote Desktop in Sys Prefs > Sharing > Services and also add a new "VNC" in Sys Prefs > Sharing > Firewall (VNC was a "canned" service that you enable it from a drop-down menu in "New" and it would quick-fill the necessary port data when you enabled it). Back over in ARD, there was an "Access Privileges" button that you had to go into to set up who could do what remotely via VNC, and enter the password that the VNC client would have to enter in order to gain access. But I'm not sure how to set that up in Leopard because they are doing the firewall and security and services a little different in Leopard and I don't have Leopard. I imagine the overall goals are the same, but the actual procedure to get there is a little different now. But you would still add additional port tunneling options in your ssh login command to tunnel the otherwise non-secure VNC traffic through a ssh tunnel as well. Again, there are numerous posts in this forum to tell how to do that. If you need help finding them, again, I or others could probably direct you to specific posts.
If you don't do Terminal, there are GUI front-ends to manage setting up tunnels for your otherwise non-secure services that you are wanting to access -- I think one is called ssh tunnel manager or something like that. Or you could buy two copies of VPN Tracker and set up a peer-to-peer connection. May still need to forward port 500 (I think it is, for VPN) through your home router.
Or are you wanting to set up your own webserver? Then enable web sharing in Sys Prefs Sharing, and forward port 80 through your router. Build your webpages in your Sites folder.
If you have a dynamic IP address assignment from your ISP and don't have your own domain name, look into something like DynDNS Updater or equivalent so you don't have to worry about what your dynamic IP address du jour is all the time. You can get your own free domain name and will always be resolveable to a numeric IP address, regardless of how frequently your ISP changes it on you.
Are these the sorts of things that you are wanting to be able to do, or .... ??
Typically, if you are just talking a single computer at home, I would port forward port 22 through your home router to the computer to which you wish to connect. Turn on remote login in system preferences in the home computer. This will give you "secure shell" command line access in Terminal.
If you want to be able to remotely mount the home computer on your desktop so that you can drag & drop files between them, then in the home computer, turn on AFP file sharing. Unless you have to access from a Windoze box, do not turn on smb. Then you add a "port tunneling" directive to your ssh login command so you tunnel this otherwise non-secure service through the encrypted secure shell tunnel. There are numerous posts in this forum that go into details about how to do that. If you have difficulty locating them, I or others can probably help you locate them.
If you want to do VNC, I'm not sure of all the nuances involved with Leopard in order to do that. In Tiger, you had to enable Apple Remote Desktop in Sys Prefs > Sharing > Services and also add a new "VNC" in Sys Prefs > Sharing > Firewall (VNC was a "canned" service that you enable it from a drop-down menu in "New" and it would quick-fill the necessary port data when you enabled it). Back over in ARD, there was an "Access Privileges" button that you had to go into to set up who could do what remotely via VNC, and enter the password that the VNC client would have to enter in order to gain access. But I'm not sure how to set that up in Leopard because they are doing the firewall and security and services a little different in Leopard and I don't have Leopard. I imagine the overall goals are the same, but the actual procedure to get there is a little different now. But you would still add additional port tunneling options in your ssh login command to tunnel the otherwise non-secure VNC traffic through a ssh tunnel as well. Again, there are numerous posts in this forum to tell how to do that. If you need help finding them, again, I or others could probably direct you to specific posts.
If you don't do Terminal, there are GUI front-ends to manage setting up tunnels for your otherwise non-secure services that you are wanting to access -- I think one is called ssh tunnel manager or something like that. Or you could buy two copies of VPN Tracker and set up a peer-to-peer connection. May still need to forward port 500 (I think it is, for VPN) through your home router.
Or are you wanting to set up your own webserver? Then enable web sharing in Sys Prefs Sharing, and forward port 80 through your router. Build your webpages in your Sites folder.
If you have a dynamic IP address assignment from your ISP and don't have your own domain name, look into something like DynDNS Updater or equivalent so you don't have to worry about what your dynamic IP address du jour is all the time. You can get your own free domain name and will always be resolveable to a numeric IP address, regardless of how frequently your ISP changes it on you.
Are these the sorts of things that you are wanting to be able to do, or .... ??