Attachmate Worldwide  |   Contact Us  |   NetIQ.com
Home » Support » Solution Library

Technical Notes

Securing X11 Connections with SSH: Quick Reference Connection Examples
Technical Note 1949
Last Reviewed 20-Apr-2007
Applies To
Reflection X version 12.0 through 14.x
Summary

This note describes how to secure X11 connections with SSH, which is an effective solution to common security problems.

To launch an X application with Reflection X:

  1. Launch Reflection X by clicking Start > Programs > Attachmate Reflection (formerly WRQ Reflection) > Reflection X.
  2. In the left pane of the Reflection X Manager, click the plus symbol next to Client Templates, and then the plus symbol next to Client Startup.
  3. Select the client template for your host Operating System.
  4. In the Right pane, under Method, select SECURE SHELL (previously OPENSSH).
  5. Complete Host and User name fields, and click Connect. The X application preset with the connection template you selected should now appear.

To launch an X application with Reflection for UNIX and OpenVMS version 12.0 – 14.x, and Reflection X version 12.0 – 14.x:

Note: This example will not work when running Reflection X in a thin client session to either a Windows Terminal Server or Citrix Server.

  1. Launch Reflection X by clicking Start > Programs > Attachmate Reflection (formerly WRQ Reflection) > Reflection X. It can now be minimized as it will be listening for X protocol.
  2. Launch Reflection for UNIX and OpenVMS by clicking Start > Programs > Attachmate Reflection > Host – UNIX and OpenVMS.
  3. In Reflection for UNIX and OpenVMS, click Connection > Connection Setup.
  4. Select Network, and then SECURE SHELL (previously OPENSSH).
  5. Input the Host and User names, and click Security.
  6. In version 13.0.4 – 14.x: Select the "Tunnel X11 connections" checkbox and then click OK.

In versions 12.0-13.0.3: Click Port Forwarding, and then click the Local tab. Check the box titled Display remote X applications on local X server, and then click OK twice to return to the Connection Setup window.

  1. Click Connect and log onto the host.
  2. At the command prompt, type the command for starting the X client you want, such as "xterm &" (you may need to include the path). The X application should now appear.

To launch an X application with F-Secure SSH Client for Windows version 5.4, and Reflection X:

Note: This example will not work when running Reflection X in a thin client session to either a Windows Terminal Server or Citrix Server.

  1. Launch Reflection X by clicking Start > Programs > Attachmate Reflection (formerly WRQ Reflection) > Reflection X. It can now be minimized as it will be listening for X protocol.
  2. Launch the F-Secure SSH Client for Windows by clicking Start > Programs > F-Secure SSH Client > F-Secure SSH Client.
  3. In the F-Secure Client for Windows, click Edit > Settings.
  4. Click the plus symbol next to Profile, and then select the word Tunneling.
  5. On the Tunneling window, check the box entitled Tunnel X11 connections, and click OK.
  6. Click File > Connect (or the Connect icon in the toolbar).
  7. Enter the Host and User names, and modify the Authentication Methods list if needed.
  8. Click Connect and log onto the host.
  9. At the command prompt, type the command for starting the X client you want, such as "xterm &" (you may need to include the path). The X application should now appear.
Related Technical Notes
1814 Troubleshooting Reflection X SSH Connections
1857 Best Practices for Configuring Reflection Secure Shell
2196 Securing X11 Connections: An Overview

Did this technical note answer your question?

Yes    No    Somewhat     Not sure yet

Additional comments about this tech note:

Need further help? For technical support, please contact Support.