Citrix Systems 6.2.0 manual Firewall Settings, To Open the VNC Port on Sles 10.x VMs Firewall

Page 73

service vnc1

 

{

 

socket_type

= stream

protocol

= tcp

wait

= no

user

= nobody

server

= /usr/X11R6/bin/Xvnc

server_args = :42 -inetd -once -query localhost -geometry 1024x768 -depth 16

type

=

UNLISTED

port

=

5901

}

 

 

2.Edit the port line to read

port = 5900

3.Save and close the file.

4.Restart the display manager and xinetd service with the following commands:

/etc/init.d/xinetd restart rcxdm restart

SUSE Linux uses runlevel 5 for graphical startup. If your remote desktop does not appear, verify that your VM is configured to start up in runlevel 5. Refer to Section D.4, “Checking Runlevels” for details.

D.3.4. Firewall Settings

By default the firewall configuration does not allow VNC traffic to go through. If you have a firewall between the VM and XenCenter, you need to allow traffic over the port that the VNC connection uses. By default, a VNC server listens for connections from a VNC viewer on TCP port 5900 + n, where n is the display number (usually just zero). So a VNC server setup for Display-0 will listen on TCP port 5900, Display-1 is TCP-5901, etc. Consult your firewall documentation to make sure these ports are open.

You might want to further customize your firewall configuration if you want to use IP connection tracking or limit the initiation of connections to be from one side only.

To Open the VNC Port on SLES 10.x VMs' Firewall

1.Open a text console on the VM and run the YaST utility:

yast

2.Use the arrow keys to select Security and Users in the left menu, then Tab to the right menu and use the arrow keys to select Firewall. Press Enter.

3.In the Firewall screen, use the arrow keys to select the Allowed Services in the left menu.

4.Tab to the Firewall Configuration: Allowed Services fields on the right. Use the arrow keys to select the Advanced button (near the bottom right, just above the Next button) and press Enter.

5.In the Additional Allowed Ports screen, enter 5900 in the TCP Ports field. Tab to the OK button and press Enter.

6.Tab to the Next button and press Enter, then in the Summary screen Tab to the Accept button and press Enter, and finally on the top-level YaST screen Tab to the Quit button and press Enter.

7.Restart the display manager and xinetd service with the following commands:

/etc/init.d/xinetd restart rcxdm restart

Alternatively, you can disable the firewall until the next reboot by running the rcSuSEfirewall2 stop command, or permanently by using YaST. This can of course expose additional services to the outside world and reduce the overall security of your VM.

66

Page 72 Page 74
Image 73
Page 72 Page 74
Contents Citrix XenServer 6.2.0 Virtual Machine Users Guide Trademarks Contents VM Migration with XenMotion and Storage XenMotion Importing the Demo Linux Virtual Appliance Windows VM Release Notes Setting Up a Red Hat Installation Server Overview About this DocumentXenServer Documentation Creating VMs Virtual MachinesOther Methods of VM Creation Importing an Exported VM XenServer ToolsPage Supported Guests, Virtual Memory, and Disk Size Limits Supported Guests and Allocating ResourcesOperating System Minimum Maximum Minimum Disk Space 4GB 8GB Operating System Experimental GuestsXenServer Product Family Virtual Device Support Deprecated GuestsVirtual device Linux VMs Windows VMs VM Block Devices Creating Windows VMs Basic Procedure for Creating a Windows VMAvailable Windows Templates Template Name DescriptionAttaching an ISO Image Library Using XenCenter to Create a VMTo create a Windows 7 32-bit VM Page Installing a Windows VM from an ISO Repository Using the CLI Using the CLI to Create a Windows VMCreating Linux VMs Distribution Vendor Install From Network From CD RepositoryCreating a Linux VM by Installing from a Physical CD/DVD Network Installation Notes Creating a Linux VM by Installing From an ISO ImageTo install Debian using a preseed file Advanced Operating System Boot ParametersTo install Rhel Using a Kickstart File To install the guest agent Installing the Linux Guest AgentLinux Distribution Installation Notes Additional Installation Notes for Linux DistributionsAdditional Debian Notes Preparing to Clone a Linux VMMachine Name IP addressPage XenMotion and Storage XenMotion VM Migration with XenMotion and Storage XenMotionXenMotion Storage XenMotionLive VDI Migration Migrating a VM using XenCenterLimitations and Caveats To Move Virtual Disks Updating VMs To uninstall the XenServer ToolsUpdating Windows Operating Systems Updating XenServer Tools for Windows VMsPage VApps Creating a vApp using XenCenterManaging vApps in XenCenter Creating vAppsDeleting vApps using XenCenter Start and shutdown vApps using XenCenterDeleting vApps To start a vAppTo export a vApp Importing and Exporting vAppsTo import a vApp Persist XenDesktop Private Desktop Mode VM Boot BehaviorReset XenDesktop Shared Desktop Mode Advanced Notes for Virtual MachinesInstalldir/xensetup.exe /S /norestart Connecting to a Windows VM Using Remote Desktop Windows Volume Shadow Copy Service VSS providerTo enable the Windows XenServer VSS provider To Enable Remote Desktop on a Windows VMTime Handling in Linux VMs Time Handling in Windows VMsTo set individual Linux VMs to maintain independent times Installing a VM from Reseller Option Kit BIOS-locked MediaGuest OS Dependent wallclock Independent wallclock Using XenCenter Preparing for Cloning a Windows VM Using VSSUsing the CLI Cloning Windows VMs Assigning a GPU to a Windows VM for Use with XenDesktopTo assign a GPU to a Windows VM using xe CLI To assign a GPU to a Windows VM using XenCenterTo detach a Windows VM from a GPU using XenCenter To detach a Windows VM from a GPU using the xe CLIDetach the GPU from the VM by entering the following Importing the Demo Linux Virtual Appliance To Import the Demo Linux Virtual Appliance Using XenCenterUseful Tests Page Supported Formats Importing and Exporting VMsFormat Description Attribute Description Open Virtualization Format OVF and OVAXVA Format Disk Image Formats VHD and VmdkXVA Version 1 Format Operating System FixupImporting VMs Transfer VMTo use the RawVDI transfer protocol Importing VMs from OVF/OVA To Import VMs from OVF/OVA using XenCenterPage Importing Disk Images To Import VMs from a Disk Image using XenCenterImporting VMs from XVA To Import VMs from XVA Files VM using XenCenterExporting VMs To Import a VM from XVA using the xe CLIExporting VMs as OVF/OVA To Export VMs as OVF/OVA using XenCenter Exporting VMs as XVA To Export VMs as XVA Files using XenCenterTo Export VMs as XVA Files using the xe CLI Release Notes Appendix A. Windows VM Release NotesRed Hat Enterprise Linux 4.5 to Appendix B. Linux VM Release NotesPreparing a Rhel 4.5 to 4.8 guest for cloning Red Hat Enterprise LinuxOracle Enterprise Linux CentOSSuse Enterprise Linux 10 SP1 Suse Enterprise Linux 10 SP3Ubuntu Creating an ISO on a Linux computer Appendix C. Creating ISO ImagesOn a Windows computer Enabling a Graphical Console on Debian Squeeze VMs Appendix D. Enabling VNC for Linux VMsConfiguring GDM to use VNC Determining the Location of your VNC Configuration FileVNC Screen Resolution Firewall SettingsCreate the xinetd.d file, /etc/xinetd.d/vnc-server-stream Enabling VNC for RHEL, CentOS, or OEL 6.x VMsEnabling Remote Administration Setting up SLES-based VMs for VNCModifying the xinetd Configuration Checking for a VNC ServerTo Open the VNC Port on Sles 10.x VMs Firewall To Open the VNC Port on Sles 11.x VMs Firewall Checking RunlevelsCopying Installation Media Appendix E. Setting Up a Red Hat Installation ServerEnable Remote Access NFSHttp FTPTo enable saving of Linux VM crash dumps Appendix F. Troubleshooting VM ProblemsVM Crashes Controlling Linux VM Crashdump BehaviourTroubleshooting Boot Problems on Linux VMs
Top Page Image Contents