Configure Graphical UI access to VMs on Google Compute Engine
After setup the VM, graphical interface can be installed via SSH
Overview#
Google Compute Engine is an Infrastructure as a Service (IaaS) component of the *Google Cloud Platform *(GCP) and aiming to provide specific hardware and utilize the cloud environment for development as well as production.
With Compute Engine, an instance could be generated with a couple of clicks with “a custom Machine Types optimized for your specific needs”. This is a great tool alongside with Docker, Kubernetes, etc. and is a game changer in the software industry and definitely a must-have tool.
Prerequisite#
If you have already created your own VM instance, well done ! This is the next part to setup a Graphical User Interface (GUI) for your virtual computer.
VM setups#
There are two essential components required in order for this to work includes a desktop environment and the Virtual Network Computing (VNC) tool.
Install Desktop Environment#
A CLI is differentiated based on the type of OS image and commonly is a Terminal, Console or some specific application with Shell (an interface) on it.
sudo apt-get update
apt-get install xfce4sudo: Admin Privilege
apt-get: Package Manager
xfce4: Desktop Environment
Install VNC Client#
apt-get install tightvncservertightvncserver: VNC Client
After successful installation, run command tightvncserver to initialize the server and identify the xstartup file in order to register installed desktop environment.
Register newly installed desktop environment in VNC server startup file
sudo vim /home/user-name/.vnc/xstartupvim: Text Editor, :wq to Save & Quit. Trust me you will need it !
Ultimately, follow the instruction to setup credential key, this will be the access password for the upcoming VNC session.
Network Connectivity#
After you have successfully installed all required components, test run the VNC server and its connectivity:
tightvncserver
nc localhost 5901
Success initialization of the VNC Server. Port 5901 returns value meaning it is listening and RFB indicates our server is up and running
nc net cat Command. More on the command manual with man nc
<5901>: Default VNC Connection Port (5800/5900), increment 1 for every new session (next, X:2 5902, X:3 5903, etc.)
RFB: Remote Frame Buffer, this means the port is up and listening
Configure port for remote access#
Before configure any settings, always backup or at least write down every step so that it’s easier for you to trace back later. Also, turn off VNC server and close port tightvncserver -kill: X with X essentially the number of your session.
From the Compute Engine page, go to your vm tab - click on more (at the right end) and select view network details.
From the Firewall Rules page, select Create Firewall Rule on the top bar.
Modify these fields:
- Name: default-vnc-server
- Description: instance-name ; vnc-server
- Source Filter: Select IP Range
- Source IP Range: Type “0.0.0.0/0”, allow all incoming connection
- Specified Protocol and Ports: Type “tcp:5901”, specify for VNC
Then leave the rest as default (modify only when you are sure what it does) and hit create. And voila now everything is running and establishing a connection !
Establish VNC Connection#
The only step left is to find your VM External (Global) IP Address and access into it from your local computer.
- External IP from the Developer console
Retrieve External IP Address of your instance from Compute Engine page on the Cloud console
- External IP from 3rd party provider
curl ifconfig.meNOTE: This method contains security risk for obvious reason.
Once having the External IP of your instance, access to it using any of the available VNC Viewer for your computer OS.
- Built-in VNC viewer for macOS
Every macOS computer contains a built-in VNC viewer and can be quickly activate via Finder shortcut ⌘ + K:
VNC session using native tool Screen Sharing on macOS 10.14.1
The syntax is <protocol>://<global-ip>:<port>
- Third-party VNC Viewer
Troubleshooting (Extra)#
- Issue with Desktop Environment configuration
Re-check if the Default Session, i.e. which DE to start up, is correct in the Display Managers: lightdm, GDM
- Forgot VNC Server Password (tightvncserver)
On vm instance, type vncpasswd into the CLI and follow instruction to reset the password.
- VNC Server port not forwarding
Re-check the Firewall settings of your computer for issue such as SSH permission, SSH tunneling config.
Also, from Compute Engine page, click on your VM and select edit. In network tag, add the default-vnc-server tag or the equivalent name that you created before.