Hello selfhosters, I’ve been using different remote desktop apps to support few friends and family members with their Windows or Linux desktop machines. Sometimes I also use phone (Android) when I’m away from home.
I tried 3 services so far:
- TeamViewer - its amazing, but it recognized me as non-private user and asking for money…
- AnyDesk - even better experience than TeamViewer. It also started with non-private use and messages to buy a license (after creating account it stopped doing that). It works perfectly fine, but sometimes it gets super slow and it tends to reduce stream quality by too much
- RustDesk - finally found open source solution and it has the same features like others I tried. The problem with RustDesk is simmilar to AnyDesk, sometimes its super slow, laggy and with reduced stream quality and sometimes connection breaks. It has permanent message on the bottom:
Ready, For faster connection, please set up your own server.
Sounds like a perfect task for my server on fiber network.
I checked self hosted RustDesk service, but it requires opening ports. I have open wireguard port to my home server to connect to home network when needed. I don’t like idea of opening more ports just because it doesn’t feel safe in my hands, but maybe I’m wrong. Am I missing something? What do you use for remote desktop? Do you have the same experience with any service I mentioned here? Is anyone selfhosting RustDesk server? Are there better (free or affordable) alternatives available? I prefer selfhosted if possible. 10$ a month is kinda steep for me and my needs. I don’t need super high quality stream, but would be nice to have simple solution that just works
All tips are welcome
You can tunnel RDP over SSH. Then you’d only open a port that requires authentication to access and is encrypted.
Do I need to open port on client pc for that? Ill take a look anyway, thx
No only the server, you can host an openssh server and have clients connect remotely.
Sorta like how you can host a webserver and a client doesn’t need 443 open. Except a reverse shell is possible with ssh, allowing a client to be controlled without their port 22 open.
Nice thx, Ill read more about that
Only for SSH which is safe.
As far as security goes, 1 open port and 1000 open ports contain basically the same level of risk exposure to the internet- a hole will always be a hole. If you need to open a few more for rustdesk, just do it, and be diligent about your firewall rules.
I’ve used VNC inside my LAN before with decent results, and it doesn’t break graphics drivers like windows RDP does. However, not FOSS.
Thx, Ill try VNC. I might open port at the end, but there are many options in other comments Id like to try as well
I use NoMachine, but that’s in a Linux-to-Linux environment.
Did a test last weekend sitting in a department store parking lot on the store’s public wifi, wifi bitrate about 50Mbps both ways, 50ms between me and my homelab … very very usable experience with quality set at 6/10.
This. Everything else my partner and I tried with our home server was some kind of BS (except SSH obviously) except for NoMachine. Bulletproof.
Thank you. Sounds good, but linux to linux is not enough for me unfortunately. I need something that works on android and windows as well
NoMachine has Android and Windows clients.
I for one use and self-host Meshcentral. The GUI is ugly, but it works well.
Ive heard about meshcentral, its on my list to try it out. Thx
I use Apache Guacamole with Duo 2FA and LDAP authentication. All of it is self hosted and sitting behind Nginx for SSL. Works great aside from when I’m in the office and they do some security te blocking that I’m too lazy to find a work around for as I rarely go into the office.
Why the downvote for Guacamole? Is it because it’s not practical to OPs question? Did something happen with the project? I’m not up to speed, but have been mulling over using it for my setup for a while now.
At work we are using anydesk and boy… Even the paid Version isnt really better than the free one imho.
Rust is the next one i wanna try. About the opening ports. Maybe run it in a docker Container? For me a self hosted solutions also Sounds super nice and i gonna Look into it.
Edit: sorry for All the typos… Stupid phone and typing while walking xD
At work we are using anydesk and boy… Even the paif Version isnt really Taster than the free one imho. Rufst is the next one i wanna try. About the openong ports. Maybe run it in a docker Container? For me a self hosted solutions also Sounds super nice and i gonna Look into it.
FTFY
At work we are using anydesk and boy… Even the paid version isn’t really faster than the free one imho.
Rust is the next one i wanna try. About the opening ports. Maybe run it in a docker Container? For me a self hosted solution also Sounds super nice and I’m gonna look into it.
Damn… Yeah saw All the typos now sorry xD
Lol it happens
Are you doing the support for free? If so I would make another teamviewer account.
I’ve only heard of them asking for money if you connect to a computer with a paid account. Are you connecting to computers with paid teamviewer instances?
Yeah doing it for free and never had a paid version. It could be that some computers had paid support via TeamViewer, but It wasnt me. I stopped using TeamViewer many years ago, I could give it another try. thx!
Acronyms, initialisms, abbreviations, contractions, and other phrases which expand to something larger, that I’ve seen in this thread:
Fewer Letters More Letters SSH Secure Shell for remote terminal access SSL Secure Sockets Layer, for transparent encryption VNC Virtual Network Computing for remote desktop access
3 acronyms in this thread; the most compressed thread commented on today has 3 acronyms.
[Thread #192 for this sub, first seen 5th Oct 2023, 16:15] [FAQ] [Full list] [Contact] [Source code]
I personally use hop2desk for all of my remote access needs. Works wonderfully on any pc as well as on android! Best part is you dont need to dick with ports or anything like that, just make sure you set a good persistent password and you’re good to go.
This looks super promising thank you
I’ve been using Parsec for support given I’m the only dedicated Linux user (Linux isn’t a supported host-type in Parsec, only client). Its WebRTC based and uses STUN/TURN to build the connections. Its a very straight-forward solution. If open ports is that much of a concern (like opening TCP/22 for SSH or even just having SSH running externally accessible on non-standard ports) then you could always ask to put the machines you support on a tailscale or zerotier network or whatever SDWAN sorcery exists out there. Then you could just RDP to the machines without going over publicly routable addresses.
Thx
i use Tailscale on everything these days (or use Headscale if you want to self host the control plane). with the free plan you get up to 100 devices on a “tailnet”, just set the right ACLs to only allow the remote connection ports of choice, pair it with self hosted RustDesk, and you should be good to go. the NAT traversal of Tailscale is pretty good from what i’ve observed, but sometimes you might get stuck on a relay (called a DERP) if it can’t get across the firewall(s).
I know about tailscale as alternative to bare metal wireguard server, but the rest is new to me. Ill read more about that thx