 |
Specialized Systems, Inc.
VNCHelp Framework |
VNCHelp - Operation
Run vncview.exe. This opens the VNC Viewer application in listening mode. The VNC
viewer binds to port 5500 and waits indefinitely for a server invoked connection.
This reverse connection process does not use a password because the initiating
server surrenders control to the client. The remote server gains no control over
the client running the viewer.
This process allows a VNC session thru a firewall outside the scope of control by
reversing the connection process, thus only requiring firewall configurations on
the client side, as opposed to the traditional server (target) side NAT mappings.
Although some documentation states you can change the port used in this process,
I have been unable to do this. Using different ports would allow additional NAT
mappings on one public ip address using multiple internal addresses. As of now,
this feature is only available to one PC at a time. This could be expanded by
using each public ip on port 5500 to an internal ip. You would have 1 available
session per public ip address.
The VNCHelp workflow is as follows:
- The engineer will already have his firewall configured so that the IP address configured in the VNCHelp package is automatically forwarded to his workstation. The "port forwarding" configuration is TCP port 5500.
- The engineer opens the VNC Viewer in listening mode (also known as daemon mode) by using the VNCView application (vncview.exe).
- The user is instructed to download and run the VNCHelp application either over HTTP from a website or from an email attachment.
- When the user runs VNCHelp, it will self install with no interaction from the user and then initiate a connection to the pre-defined IP address on port 5500.
- The user's desktop will then appear on the engineer's workstation on the VNC Viewer.
- The engineer solves the issues either by doing so himself or trains the user by walking them thru the process as he watches.
- The engineer then disconnects the session and instructs the user to run the VNCHelp application again.
- VNCHelp will sense that it is already installed and therefore uninstall itself. The user can then close the webpage and or delete the email containing VNCHelp application attachment.
- The user's computer will contain no traces of VNC files or registry entries after VNCHelp uninstalls.
VNCHelp Notes:
VNCHelp:
Module that installs VNC by means of user initiating the execution
of the pull module / executable.
VNCHelp:
Module that installs VNC using the VNCHelp module but additionally
initiates a connection to a listening VNC Viewer client running in
daemon mode (viewer.exe -listen).
User: Automatic Connection:
vnchelp.exe
User: Automatic Install:
vncpull.exe
User: Automatic Uninstall:
vncpull.exe
vnchelp.exe
User: Manual Uninstall:
c:\vnc\vnchelp -u
Note: Do not have folder or command prompt open to c:\vnc directory
otherwise the system will deny access removing directory link.
recommended: start/run: c:\vnc\vnchelp -u
User: Manual Run (after reboots, etc):
c:\vnc\vnchelp -r
User: Manual Connection (starts WINVNC.EXE):
c:\vnc\vnchelp -c
c:\vnc\vnchelp -c rhost|ipaddress
Internal: MOD/W HOST Switch
vnchelp.exe vnchelp.bat -x
vnchelp.exe vnchelp.bat -x rhost|ipaddress
vncpull.exe vnchelp.bat
vncview.exe vnc_viewer_real.exe -listen