How do I set up firewall to allow ARD 2.1?

[Anonymous]

I have a firewall on OS X Server, but don’t know how to open up the ports required for ARD to work to remotely control the server.

If I allow all ports from any to any then ARD works. When I close everything up and then try and allow UDP and TCP on ports 3282 and 5900 (which are the ports I think should be open) then it doesn’t work.

For example, for TCP port 3283 this is what I did:

Action: Allow
Protocol: TCP
Service: Apple Remote Desktop
Source
Address: any
Port: 3282
Destination
Address: any
Port: 3283
Interface: Other…

Can someone give me a step by step set of instructions or point me to somewhere where it’s spelt out simply.

Thanks,

Roman

[Ian]

Docs say port 5900 must be opened for ARD 2.1. I have not had any success opening this port.

[puxuradude6]

You are correct, you have to open ports 3282 and 5900. However the way you are entering this in the firewall is all wrong. I wrote the correct (simplified) rules below:

allow tcp from <your ip> 5900 to any out
allow tcp from any to <your ip> 5900 in

So no UDP ports as they are not used. In the first rule you fill in your IP address at the source and the port number as well. The IP address at the destination is any and the port is empty. For the second rule it’s the other way around. Leave the source part to any and fill in the destination path.

You can do the same with port 3282 althoug if you’re using Mac OS X Server this port can be opened by selecting it in Apple’s GUI.

[efhjr]

So, is this the right way to do it?

IP numbers are dummied in, so ignore the invalid IP warning.

Because this no worky for me.

I created an Address Group which contains only the static IP number of my client and then those two Advanced Rules, using Server Admin 10.4. There’s no router, no proxy. Port 5900 TCP/UDP is open on the client.

I can’t view my 10.3.9 server with firewall on with ARD 2.2 on my 10.4.2 client. When I turn off the firewall and ARD will access the server. What gives?

[Author]

Posts