Forum / NoMachine for Windows / NoMachine access from Windows client to multiple Linux desktop via reverse ssh
Tagged: AWS, HAProxy, reverse tunnel
- This topic has 1 reply, 2 voices, and was last updated 10 months ago by Britgirl.
-
AuthorPosts
-
February 16, 2024 at 09:43 #47052BadpunkParticipant
Hello,
I have a setup wherein we have multiple VMs in a private subnet (AWS)
All these VMs have NoMachine desktop installed and port 4000 of these VMs have reverse tunneled to different ports on a central server which is accessible to outside world.
Eg, port 4000 of VM1 is tunneled with port 4001 of central server
Port 4000 of VM2 is tunneled to port 4002 of central VM
.
.. And so on.
The central VM can be accessed by its hostname or IP. It uses a wildcard certified in AWS route53 for DNS resolution.
The clients use this central server ip/hostname and their respective port in order to connect to their VM.
What I want to achieve is that the users connect to same port of this central server, say port 443. In the hostname section, they will give different hostname. Like vm1.domain.com, vm2.domain.com etc.
The central server then checks the domain that user has entered, and redirects traffic to desired VM.
I believe such resolution thing is possible with Haproxy, but I’ve read NX protocol doesn’t support SNI headers.
So want to get feedback if such thing is possible with NoMachine with NX protocol.
February 19, 2024 at 15:31 #47087BritgirlKeymasterTry one of the Cloud Server products. Cloud Server can be used as a gateway to broker connections to desktops/machines that are behind the cloud server (desktops can be physical or virtual machines), on the corporate network. You can find more here: https://www.nomachine.com/cloud-server-family. It’s not just a gateway for your users, it also provides admins with a configuration and management interface accessible also from remote, including a web browser. You can add as many nodes as you want to any of the Cloud Server products through its admin interface. You can also use what we call “inverse add method”. This means that if a desktop node “moves” or is in DMZ, the node can be added to the Cloud Server from the node, of doing it from the cloud server, by going to Settings -> Server -> Clouds panel on the desktop node.
If you are using the free edition of NoMachine, switch to Enterprise Desktop or Workstation. Enterprise family products can be added as nodes to a Cloud Server.
See this guide which explains everything you need to know (I chose the Enterprise Cloud Server guide) https://kb.nomachine.com/DT08T00263. The full list of guides is available here: https://www.nomachine.com/support/documents.
Further resources: https://www.nomachine.com/adding-nodes-to-nomachine-cloud-server-via-the-nomachine-user-interface#inverse
-
AuthorPosts
This topic was marked as solved, you can't post.