Linux Mint on Android through VNC and Jump
Today "Jump" was available for free on Amazon as the app of the day and since it's nearly 7 quids on google play store, I grabbed it. For windows and Mac users, they have a pretty straight forward set-up but as usual for Linux it means some work but, in the end, it leaves you with a set-up you can trust and feel secure about.
Set-up x11vnc and ssh servers¶
Linux Mint machine should be set-up for x11vnc and ssh servers
Install VNC¶
Install X11VNC by typing following command in terminal:
Configure VNC¶
Create a password for VNC Using following command in terminal and providing a password and answering yes for the prompt to store password in a file.
Now to ensure that X11VNC starts at boot go to menu and type start, click on startup application as shown in the screenshot below:
Then in the window that this will open click on "Add" and enter a "Name" and in "Command" field paste the command below:
VNC set-up on machine is complete.
Install openssh¶
Install openssh-server using following command on terminal:
Configure openssh¶
We will need to change some parameters in ssh configuration for making it secure as by default it allows root login but I dont want that for remote access and would advice most regular users to do so as well.
-
So we will first make a backup of existing configuration file using the command below:
-
Now, we will edit the actual config file using following command:
-
Once the file is open change the parameter "PermitRootLogin" to "no". It's on line 27 for me.
-
Now, the default port for ssh is 22 but I recommend changing it to something else such as 5432.
- To do so change the parameter "Port" from 22 to whatever port you want to put. In this example it will be 5432. For me "Port" parameter is on line 5.
-
Save the changes and close gedit.
-
Now we will restart the ssh server using following command in terminal
-
For Arch, you can use the command:
followed by to ensure ssh daemon is enabled at startup. -
Restart the machine and machine set-up is done.
Configure Router firewall¶
Router firewall should be configured to allow inbound traffic on specific ports. This may involve different steps from those given below depending on the router in use. Following steps are meant for configuring the sky router. However, principle is same. We will be creating specific service definition and port on router and then create a firewall rule that allows inbound traffic and directs it to Linux machine we configured above.
-
Type following command on terminal:
-
This will list lot of numbers, what we are interested in is the number just after "inet addr:" under wlan0. It will be something like 192.168.0.10.
-
Open sky router config through browser using 192.168.0.1 and click on "Security". You will need to enter router username and password.
-
Then click on "Services" and then click on "Add Custom Services".
-
Enter as shown in Figure 4 and Start Port as 5900, Finish Port as 5900 and click on "Apply".
Tip
5900 is default port for display 0 in VNC. If you have changed it like me you will need to enter that port. To change port you will need to use x11vnc -forever -xkb -usepw -autoport nnnn -display :0 option in third step of VNC config above. This is not required for security but in case you have two different machines then this approach will come handy.
-
Now click on "Add Custom Services" again and this time enter as shown in next screenshot. Start Port and End Port should be same as entered in step 1.8, so for this example it will be 5432. Then click on "Apply".
-
Now we need to set the firewall for these services. To do so, click on "Firewall Rules" then click on "Add" under inbound services.
-
Configure fields as shown in next screen-shot below and click on "Apply".
-
Now we will do same for SSH, so again click on "Add" under inbound services and configure fields as shown in screen-shot below and click on "Apply".
-
Click on "Apply" under "Inbound Services".
-
In browser on the router management page, click on "Advanced" > "Remote Management" and on this screen make note of the IP address (number after http:// in red box in next screenshot) shown under "Remote Management Address".
-
Go to https://www.dlinkddns.com/signin and create an account. Refer this page for the how-to and you will need to use the IP from step above as the host. At the end of it you will have a hostname like "yourname.dlinkddns.com", username and password for logging in to dlinkddns site.
-
Once this is done, go to the browser with sky router management and click on "Advanced">"Dynamic DNS" and fill as shown in screen-shot below:
-
Once above information is filled, click on "Apply" and then click on "Show Status". It should open a separate window and showing the message "request successful".
Sky Router is now configured.
Jump or an equivalent VNC viewer should be configured on the android device.¶
- On the android device open Jump and click on the "+" sign in right hand corner.
- In the "Address" Field enter the hostname from 2.12 (
yourname.dlinkddns.comin this example) and select connection type as "VNC" and click save. - Change the "Authentication Method" to "VNC Password"
- Tap on "SSH Tunnel", click on "Enabled" checkbox.
- In Username enter the username used to log into the machine configured above in Step 1.
- In Host Name, use the the hostname from 2.12 (yourname.dlinkddns.com in this example)
- Change the port to one used in 1.8. So in this case 5432.
- Password can be left empty and when asked during connection provide the one used to log on to the machine with this username.
- Press back button and click on entry. You will be shown a SSH key notification, say ok. Then you will be asked for a password, provide the password you use to log onto your machine with the username provided in 3.6.
- Then you will be asked for the VNC password, provide the password from step 1.2.
You will now be able to view your desktop on your android machine.
All Done !!!