To allow incoming VNC connections on a Linux system using iptables firewall, you can follow these steps:
- Check if iptables is already installed and running:
sudo systemctl status iptables
If it’s not running, start it with the following command:
sudo systemctl start iptables
- Identify the VNC port you want to open for incoming connections. By default, VNC uses port 5900, but you may have configured a different port.
- Add a rule to the iptables firewall to allow incoming connections on the VNC port. For example, if you want to allow incoming connections on port 5900, you can run the following command:
sudo iptables -A INPUT -p tcp --dport 5900 -m state --state NEW,ESTABLISHED -j ACCEPT
This command adds a new rule to the INPUT chain, which allows TCP traffic to the specified port from new or established connections.
- Save the iptables configuration to make the changes persistent across reboots:
sudo service iptables save
After applying these steps, incoming VNC connections should be allowed on the specified port. Make sure to secure your VNC connection with encryption and strong passwords to prevent unauthorized access.