Ok, here's my system:

Mandrake 9.1
running IPTABLES w/ NAT (it has a public IP)

I can easily login to this machine from my lan, but I'm having trouble getting to it from the internet. At home I use both Exceed and XWin32 to access it, here I'm using XWin32.

Now I use the query method of connect, and I get nothing, timeout.

I use the Indirect method and I get Willing to Manage, hostname, but when I try to establish the session, it displays nothing.

AFAIK there are no firewalls blocking me, however my ISP does filter out ICMP/commonly used servers (http/ftp/telnet) but I really don't think they block xdmcp.

Thought it might be worthwhile to post the question here while I work on it more...I'll report if I have any further results

If you are connecting over the internet you really should use something secure like ssh. You can find ssh at openssh.com. There are a number of free clients for windows I like putty. Once you connect with ssh you can tunnel X over it. Since you are using Mandrake you may need to setup the ssh server.

well that's something I've thought about, and may do, but for right now I just want it working, so any help there is much appreciated..

I did do a:
export DISPLAY=sourceip:0

so I don't think that's the problem.

nobody can get into my X and do any damage without root anyhow, so unless they crack my password that quickly, I don't think its too likely.

Is TCP port 6000 open from the internet?

it should be, but I think mine uses 7100....either way XWin32 can connect locally fine so I don't think it's a port problem, and there is a very limited firewall on the machine (since my ISP already blocks the dangerous services like Netbios/ICMP/Servers)

All ports above 1080 are open

You also need to allow UDP port 177.

X runs on TCP port 6000. The X font server is on TCP port 7100.

No idea what you are using for a login manager, but gdm is far easier to get set up for XDMCP than either kdm or xdm.

it should be XDM, GDM might be easier to setup, but I followed a HOWTO that was pretty XDM specific I think, and I haven't tested if GDM wouldn't require a whole nother setup routine.

yes, for testing purposes I've allowed all traffic right now, so it's not a port problem (or atleast not that they're closed)

Should it be my ISP that is blocking those ports, any solid way for me to tell?

The setup for gdm involves running the Gnome Display Manger Configurator, selecting Expert mode, navigating to the XDMCP tab, and placing a check mark in the box "Enable XDMCP" and restarting gdm.

No hand editing of any files is required :D

I guess you could run nmap against your IP. UDP 177 and TCP 6000 must be open and forwarded to the machine.

nah, no ICMP, no Nmap, or atleast not much of one =P

I'll have to wait til I get home I guess, no remote admin.

reactivating this thread as I've recently reinstalled mandrake (don't ask) and I'm going to use GDM with XDMCP... I'm trying to login via Exceed and I'm not getting any "willing to manage" signal (and it's supposed to allow passive connecting) so I'm thinking there might be a bit more configuration needed? Can I have the computer in GDM and still connect, or is only 1 session allowed to be active at a time?

Important:
I am connecting locally so a xdmcp broadcast should work.