Use DynDNS for better success with Back To My Mac
Many folks were excited when Apple announced Back to My Mac as part of MobileMe. Being able to remotely access your Mac from anywhere sounded like magic. We're used to products from Apple that "just work" but for most people most of the time, Back to My Mac "just doesn't."
To maximize your chances, you're supposed to use a supported router, but even that's no guarantee. At home I have an Airport Extreme Base Station (Wireless-N), and at the office I have an Airport Extreme Dual-Band model. I don't think it's possible to get a "more compliant" setup, yet I still can't get it to work most of the time.
Under the adage "nothing ventured, nothing gained," I took a chance and signed up for a free account with DynDNS. DynDNS gives you a free hostname which will go to your computer even when your IP address changes. There are scads of DynDNS domain names available, but for the purposes of this example, let's assume that your domain name is imac.homeip.net.
After you've signed up for your free account and chosen a hostname, download and install the DynDNS Updater for Mac and install it on the machine you want to access via Back to My Mac. (If you want to do this for more than one computer, you will need a different DynDNS hostname for each computer. You can get up to five at no cost.)
Once you have it running, make sure that it has updated, and then switch to your other Mac. You could launch Screen Sharing.app directly from /System/Library/CoreServices, but a much better suggestion is to install the free ScreenSharingMenulet which will sit in your menu bar. ScreenSharingMenulet will remember hosts that you have previously connected to, meaning that you don't have to re-type the hostnames. Click on the menu bar icon, select "New Connection..." and then enter your DynDNS hostname (i.e. imac.homeip.net) and check the "Add to My Computers" box so it will appear in the My Computers sub-menu in the future. Click "Connect" and cross your fingers.
If it still doesn't work, I have a few more suggestions, but I warn you, we're going to get a little technical here. First, you're going to want to setup a DHCP Reservation for the computer you are trying to connect to. The process isn't very difficult. Essentially what you are doing is telling the router to always assign the same IP address to the computer you are trying to access. After you have done that, tell the router to send all traffic directly to that computer. On the Airport Express this is called the "Default Host" and is found on the Internet Tab under "NAT" but other routers have different names for it (I believe Linksys routers refer to this as the "DMZ" host. Check your router's documentation if you're not sure.)
Warning: once you do this you are bypassing your router's firewall. Mac OS X has a firewall, but it is not enabled by default. Launch System Preferences and click on the Security panel followed by Firewall tab. If it doesn't say "Firewall: On" be sure to enable it.
Update #1: Several comments below suggest that putting your Mac as the "Default Host" or "DMZ" will make your Mac insecure. I don't know of any evidence that that is true - "gut instinct" is not evidence - assuming the Mac OS X Firewall is enabled. That said, you can try using Port Mapping or Port Forwarding to forward to port 5900 (the port Screen Sharing uses). If you can block all access to your Mac except for that one port, it obviously reduces the number of potential ports that a malicious attacker could try to access your Mac. As one commenter suggested, you could even map different ports to forward to port 5900 on various Macs behind the same DynDNS hostname. In AirPort Utility you can find Port Mapping configuration under "Internet" and then click on the "NAT" tab. This will still require that you use DHCP Reservations, as above.
If all else fails, you might want to try another direction: Back to My Mac through iChat. I haven't actually tried that, but it's another option.
I can't explain why using a DynDNS domain name works more reliably than the built-in Bonjour sharing/connecting method, but after days of unsuccessfully trying to connect to my work computer, I have been able to connect via DynDNS without fail. As my Dad taught me long ago, "A good strategy is that which works."
Update #2: I have been using this setup for the past week (using Port Mapping for port 5900, not the DMZ), and have had a 100% success rate connecting BackToMyMac using my DynDNS. This is a dramatic improvement over trying to connect via the Finder.
Share
Source: https://www.dyndns.com/
Categories
Many folks were excited when Apple announced Back to My Mac as part of MobileMe. Being able to remotely access your Mac from anywhere...
Add a Comment
My problem is that I can only ever connect to one of my home macs. That one always shows up as available for screen sharing via Back To My Mac, but none of the others ever do.
I've tried everything: allowed upnp, signed out and back in, etc.
Has anyone ever been able to connect to multiple macs behind the same broadband modem? I've got Verizon FIOS and two Apple Airport Extreme base stations.
If you're going to use DynDNS, I might even go as far as to say to not even use Back To My Mac and just use a variant of VNC to remotely control your computer.
March 15 2010 at 1:59 PM Report abuse Permalink rate up rate down ReplyWhy don't you just use SubSeven like everyone else?
Or Maybe Flash/Office?
why not use OpenDNS? works for me on my macs and windows systems.
March 14 2010 at 1:49 AM Report abuse Permalink rate up rate down ReplyI should point out that while DynDNS has a free option for DHCP tracking of personal computers (read: computers connected to a cable modem or similar) I've had gobs of trouble with keeping the DynDNS account activated - meaning it would stop after a month and I would have to actually re-create my account (login and all) monthly in order to keep it.
Finally, I just paid the $12 for the year (I think it may be $15 now) and I don't have to create the account monthly.
Putting your Mac, or any computer for that matter, in the DMZ is a HORRIBLE idea. IO highly suggest you edit the article to remove that...
Otherwise you have some good suggestions, but as was mentioned, you don't need a bunch of hostnames - they're all going to point to the same IP address (which is whatever address your modem is getting from your ISP).
this is a fantastic "support" method I've been using for my parent's computers and my little brother's system for years. When they get a new system I just create a new sub-domain, and then go through the procedure above. So I have things like:
momslaptop.mydomain.com
familydesktop.mydomain.com
etc...
So if Mom calls with a computer related question I can just jump in ARD or MSTSC (depending on the client) and get to work.
I just use LogMeIn.com -- works every time!
March 13 2010 at 3:08 AM Report abuse Permalink rate up rate down ReplyAs Ziple mentioned, I also use TeamViewer which is quite a good compromise to access remotely my MBPro at home from the office or my iMac at the office from home (you can even control a PC from a Mac). I configured (via mobileme access) my Airport N router at home to access a share drive with the most common files I need when away/abroad with my MBP. For the needs of my job the most "important files" (word, excel) are on cloud storage. I can easily access them from my iPhone via a 3G connexion.
March 13 2010 at 2:18 AM Report abuse Permalink rate up rate down ReplyAnd if you still can't back to my mac working, try log me in. It seems to do a great job of getting around company firewalls, etc.
March 12 2010 at 11:28 PM Report abuse Permalink rate up rate down ReplyI travel a fair amount and Back to My Mac almost never works for me from hotels, airport lounges, etc. I have used the iChat trick (with auto-accept connections), but that has limitations too. I've been using LogMeIn.com for a while now and so far it has worked in every case. Until BtMM gets a sserious upgrade, I'm sticking with LogMeIn.
March 13 2010 at 12:31 AM Report abuse Permalink rate up rate down ReplyHot Apps on TUAW
Deals of the Day
more deals- Verizon Leather Sleeve for Tablets for $4 + free shipping
- Wicked Jaw Breaker Noise-Isolating In-Ear Headphones for $6 + free shipping
- Refurb Apple MacBook Air Laptops: 12" 64GB SSD for $699 + free shipping
- JVC Motion Sensing Clock Radio with Dual iPod Docks for $55 + free shipping
- Apple iPhone Headset with Mic for $4 + $2 s&h
- Refurb Apple iPod nano 8GB MP3 Player for $99 + free shipping, 16GB for $119
Software Updates
more updates- EFI Firmware Update brings Lion Internet Recovery to 2010-model Macs
- OS X Lion 10.7.3 released with Safari 5.1.3, Wi-Fi bug fix
- Aperture updated to 3.2.2, addresses Photo Stream issue
- Apple updates Keynote to address Lion issues
- Google Search app gets new look on iPad
- Apple releases Apple TV Software Update 4.4.3
Featured Stories
more stories
Popular Stories
TUAW (or The Unofficial Apple Weblog) is a website devoted to tips, reviews, news, analysis and opinion on everything Apple.
21 Comments