Re: yet another question re: X11 tunneling via ssh
Re: yet another question re: X11 tunneling via ssh
- Subject: Re: yet another question re: X11 tunneling via ssh
- From: "Ken Wang" <email@hidden>
- Date: Sat, 18 Feb 2006 15:37:09 -0500
Greetings again,
Thanks to Martin Costabel for his suggestions. Unfortunately, ssh -Y
doesn't seem to help, and I'm still having the same problem running
remote X apps. Anyway, I wondered if I could run a few more ideas and
questions by the list.
Again, X11Forwarding is set to yes on both ends. Removing my local
router and connecting my Mac directly to my cable modem makes no
difference, as I still get "Can't open display
remote.machine.net:11.0". I've also got the OS X firewall disabled at
the moment. Elsewhere it has been suggested that VPN client software
installed on a machine may enforce firewall rules even when the VPN
connection has been disconnected, but completely uninstalling the
Cisco VPN client which I had on my machine does not help.
A few questions I have are:
1. Which port(s) does a tunneled ssh X11 connection use? It seems ssh
uses TCP 22, and some sources indicate TCP 6000 is used for tunneled X
connections, whereas other sources indicate TCP 6000-6010. What about
UDP port 177? Is that at all relevant for ssh X11 tunneling? With
the OS X firewall off in the Sharing panel of System Preferences, do I
need to do anything else to explicitly open these ports?
2. Is there a way for me to tell from the remote machine whether the
required ports are indeed open? I do know that at least port 22 is
open, as I can ssh back to my Mac from the remote machine.
3. Is there anything explicit I need to do in X11 on my Mac to enable
listening for remote connections? When I do "netstat -a" on my local
Mac, I see port 22 marked as "LISTEN", but I don't see anything for
any ports in the 6000-6010 range, or for UDP 177.
Anyway, thanks for any additional help,
Ken Wang
> Date: Feb 14, 2006 11:46 PM
> Subject: yet another question re: X11 tunneling via ssh
>
>
> Hi,
>
> This is clearly a topic which has been covered many times on this list
> and in many other places, and I apologize for bringing it up again.
> Unfortunately, I still can't seem to resolve my problem, which is the
> dreaded "can't open display remote.machine.net:11.0". I have Mac OS X
> 10.4 running the X11 1.1 installation that came with my machine. My
> local ssh is marked as 3.8.1p1. I'm connecting through my local
> router to a Solaris 8 machine, running ssh 3.6.1p2.
>
> - I am using ssh with -X.
> - sshd_config has X11Forwarding set to yes on both ends of the connection.
> - I have DISPLAY set to :0, or localhost:0, prior to starting ssh.
> - I do not reset DISPLAY on the remote machine.
> - I have opened port 22 in the router to no avail.
> - I have opened port 6000 in the router to no avail.
>
> I make my connection with:
>
> mac% ssh -X -l me remote.machine.net
>
> Turning on verbose output generally produces unremarkable messages,
> except for the following:
>
> debug1: Miscellaneous failure
> No credentials cache found
>
> I'm under the impression that xhost is irrelevant with -X, but anyway
> xhost'ing doesn't make any difference. The only other thing I can
> think of is that there may be some firewall filtering going on in my
> router (D-Link DI-524) which I don't see in the firewall configuration
> info, though I've tried specific firewall rules to let all traffic
> from the remote IP through, again to no avail. (Sidenote: 45 mins
> with an admittedly very friendly D-Link tech support person culminated
> in the conclusion that my microwave oven was interfering with my
> connection...)
>
> Could anyone help me with this situation?
>
> Thanks,
> Ken Wang
_______________________________________________
Do not post admin requests to the list. They will be ignored.
X11-users mailing list (email@hidden)
This email sent to email@hidden