Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Collapse

Cloudron Forum
Apps | Demo | Docs | Install

Opening (publishing) ports in docker (guacamole)

Scheduled Pinned Locked Moved Guacamole
4 Posts 3 Posters 285 Views
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • B Offline
    B Offline
    bionor
    wrote on last edited by
    #1

    I want to encrypt my VNC sessions and so I'm trying setup SSH tunnels to the server, but for that to work I need to be able to open ports from the docker container. However, I'm new to docker and I'm failing to be able to copy the image and run it with published ports. First I tried commiting the image to a new one, but then it failed miserable because the configuration doesn't also get copied, so then I found out it's possible to commit the container itself, which seemed to go a little better but still won't start probably due to some missing configuration.

    Can someone please tell me how I can copy an image/container of guacamole and actually have it run (with open ports)?

    nebulonN 1 Reply Last reply
    0
  • nebulonN Offline
    nebulonN Offline
    nebulon Staff
    replied to bionor on last edited by
    #2

    @bionor I am not an active guacamole user, but generally speaking, while Cloudron is using docker in the background, it is not supported to really interact or tinker with docker and containers directly like this on Cloudron. Since the system would have no clue what you did, it will eventually break during updates.

    If you want to open up further ports, you have to fork the guacamole app frm https://git.cloudron.io/cloudron/guacamole-app and tweak the CloudronManifest.json there at the tcp/udp ports https://docs.cloudron.io/packaging/manifest/#tcpports

    However it sounds like a common thing to have VNC encrypted, so maybe other active guacamole users could help here if there are different options already supported by the app?

    1 Reply Last reply
    0
  • girishG Offline
    girishG Offline
    girish Staff
    wrote on last edited by
    #3

    Per https://sourceforge.net/p/guacamole/discussion/1110833/thread/b12442b9/?limit=25 it seems there is no standard for VNC encryption. Can you tell us how encryption would work if the protocol doesn't support it? Doesn't guacd need to know about encryption ?

    B 1 Reply Last reply
    0
  • girishG girish moved this topic from Support on
  • B Offline
    B Offline
    bionor
    replied to girish on last edited by
    #4

    @girish Thanks for the input. I actually decided to just build the server manually without using docker, but to answer your question, how I've done it (and this would be a SUPER AWESOME feature for you to add in your app) is to set up an encrypted tunnel using SSH. I'm doing a remote port forward from the machine I'm remoting into, to the guacamole server. Guacamole connections are then simply configured to connect to localhost and the forwarded port. Traffic then goes through an encrypted tunnel to the machine I'm remoting into.

    1 Reply Last reply
    0

  • Login
  • Don't have an account? Register
  • Login or register to search.
  • First post
    Last post
0
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks