repeater mode I and II

Here you will find help for frequently asked questions as well as for your specific question.

repeater mode I and II

Postby petemarkey » 2020-01-19 06:20

Hi all,

I am looking at using ultravnc to support some remote servers... I have been using TeamViewer temporarily.

I have set up a machine behind the firewall that is running repeater and have port 5901 forwarded (for now, will change to a non default port eventually) and and seems to work.

Right now I am just using a simple password to test but will eventually move to a certificate base authentication I hope, if it works.

Although i am decently versed in network technology i am having a hard time understanding repeater mode I and mode II.

Can someone provide some real work examples of mode II. Mode I seems to be all i need? I just want to go through the repeater and hit all servers on the same network as the repeater.

Does mode II provide additional security, or is it for some other purpose?

Thanks in advance.
petemarkey
 
Posts: 2
Joined: 2020-01-19 06:12

Re: repeater mode I and II

Postby Rudi De Vos » 2020-01-19 09:40

Mode I
viewer 12.12.12.12:5000 and proxy/repeater your repeater
The repeater try to forward the connection to 12.12.12.12:5000
Repetaer need to be able to connect to the destination ip
Viewer is outgiong, server is listening
This is more or less the same as port forwarding

Security:
You need to proper define the allowed ports and ip destinations.


Mode II
viewer connect to repeater using an identifier
server connect to repeater using an identifier
The repeater cross streams when the identifier is the same.
You have 2 outgoing connection. Server and Viewer can be behind a NAT router

Security:
*Instead of using a high security repeater we put encryption on the server<->viewer data.
-The repeater vcan only read the initial identifier, but all other data is encrypted
That's why you always need to use the encryption modules
Rudi De Vos
Admin & Developer
Admin & Developer
 
Posts: 6278
Joined: 2004-04-23 10:21

Re: repeater mode I and II

Postby petemarkey » 2020-01-21 14:03

Ok, i think i might understand.... So in Mode II the repeater might run in the cloud, not at the office. Therefore no need to forward ports at the office to the repeater.
petemarkey
 
Posts: 2
Joined: 2020-01-19 06:12

Re: repeater mode I and II

Postby Rudi De Vos » 2020-01-21 15:34

Mode II
No forward needed at office and home(client) as both connect to the repeater running in the cloud.
Rudi De Vos
Admin & Developer
Admin & Developer
 
Posts: 6278
Joined: 2004-04-23 10:21

Re: repeater mode I and II

Postby AnotherUVNCuser » 2021-03-23 05:20

Rudi De Vos wrote:Viewer is outgiong, server is listening


So when using the repeater it is *not* possible to make a "reverse connection" (i.e. SocketConnect=0), as can be done with a direct "server" <=> "viewer" connection?
AnotherUVNCuser
40
40
 
Posts: 68
Joined: 2017-09-13 00:40

Re: repeater mode I and II

Postby Rudi De Vos » 2021-03-23 18:14

Mode II: Both are outgoing
Viewer or server can initiate the connection, a reverse connection is possible.

Mode I: server is listening, viewer is outgoing ( This act the same as port forwarding)
Rudi De Vos
Admin & Developer
Admin & Developer
 
Posts: 6278
Joined: 2004-04-23 10:21

Re: repeater mode I and II

Postby AnotherUVNCuser » 2021-03-30 01:54

Tank you Rudi :wink:
AnotherUVNCuser
40
40
 
Posts: 68
Joined: 2017-09-13 00:40


Return to General help

Who is online

Users browsing this forum: Google [Bot] and 21 guests