User profile for user: gramster1
gramster1 Author
User level: Level 1
4 points

Apple Remote Desktop Over WAN

Hello there,


Wondering if anyone has instructions or experience with setting up remote desktop admin to discover macs over WAN -- eg if I am using my MacBook Pro I can add computers to a list that uses individualized public DNS addresses (Since I have multiple machines on my home network and would like to choose which one I can access remotely). Secondly, in reverse order if I am using my iMac at home I would like to be able to connect to any of my other machines... I guess what I am getting at is how can I assign each one of my machines a IP/DNS to be used for remote controlling regardless of where it is located or what machine I am running the ARD admin app from...


Also, I noticed that in ARD you can set a remote management and screen sharing port for each machine... would I able to use different ports for different machines on my home network so that I can access them when I am away --eg myip:portofmachine corresponding specifically to each individual machine? Maybe so that I can open each respective port on each machines local ip?


Thanks in advance!

Posted on Feb 20, 2019 11:50 PM

Reply
Question marked as Top-ranking reply
User profile for user: MrHoffman
MrHoffman
Community+ 2025
User level: Level 10
144,719 points

Posted on Feb 21, 2019 3:02 PM

Set up a VPN into the target network, preferably into your firewall as that greatly simplifies NAT when mixed with a VPN, and with this your client system—running ARD—is now effectively a client on the target network. Various mid-range firewall boxes offer VPN servers, which makes this far easier than VPN passthrough, or setting up the per-client port-forwarding rules at the firewall as you're considering, and the VPN protects your network traffic, and it keeps the internet riffraff from bouncing (directly) off of each one of your exposed machines with the inevitable brute-force attacks.


The riffraff will usually find newly-exposed network ports within minutes, too. The background hum of the internet is folks running port scans and brute-forcing efforts.


For firewalls with embedded VPN servers, I've used ZyXEL ZYWALL USG firewalls and these are quite capable boxes, though they do assume some familiarity with networking terms and VPN concepts. There are other options.


if you want a more detailed discussion of the options and mechanisms, searching for VPN and ARD, and similar searches, should turn up quite a few discussions. Here are a few of the discussions I've participated, and each of these with links to more discussions. (I should probably roll all this into a user tip, but that's fodder for another day.)


Can I access my grandmother's laptop with… - Apple Community

Help with adding remote client in Apple R… - Apple Community

ARD question - Apple Community

View in context

Similar questions

1 reply
Question marked as Top-ranking reply
User profile for user: MrHoffman
MrHoffman
Community+ 2025
User level: Level 10
144,719 points

Feb 21, 2019 3:02 PM in response to gramster1

Set up a VPN into the target network, preferably into your firewall as that greatly simplifies NAT when mixed with a VPN, and with this your client system—running ARD—is now effectively a client on the target network. Various mid-range firewall boxes offer VPN servers, which makes this far easier than VPN passthrough, or setting up the per-client port-forwarding rules at the firewall as you're considering, and the VPN protects your network traffic, and it keeps the internet riffraff from bouncing (directly) off of each one of your exposed machines with the inevitable brute-force attacks.


The riffraff will usually find newly-exposed network ports within minutes, too. The background hum of the internet is folks running port scans and brute-forcing efforts.


For firewalls with embedded VPN servers, I've used ZyXEL ZYWALL USG firewalls and these are quite capable boxes, though they do assume some familiarity with networking terms and VPN concepts. There are other options.


if you want a more detailed discussion of the options and mechanisms, searching for VPN and ARD, and similar searches, should turn up quite a few discussions. Here are a few of the discussions I've participated, and each of these with links to more discussions. (I should probably roll all this into a user tip, but that's fodder for another day.)


Can I access my grandmother's laptop with… - Apple Community

Help with adding remote client in Apple R… - Apple Community

ARD question - Apple Community

Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

Apple Remote Desktop Over WAN

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up