What Does VNC Mean?
Also known as: Virtual Network Computing, VNC viewer, VNC server, remote desktop
This page mentions older exam versions. See the Current Exam Context and Legacy Exam Context sections below for the updated mapping.
On This Page
Quick Definition
VNC (Virtual Network Computing) is a graphical desktop sharing system that uses the Remote Frame Buffer (RFB) protocol to remotely control another computer. It transmits keyboard and mouse events from the client to the server and returns screen updates in the opposite direction. VNC is platform-independent, meaning a VNC viewer on one operating system can connect to a VNC server on a different OS. It operates at the Application Layer (Layer 7) of the OSI model and typically uses TCP port 5900 for the main connection, with a separate port (often 5800) for optional web-based access. VNC was developed at the Olivetti & Oracle Research Lab in Cambridge, UK, and later released as open source. Its primary purpose is to provide remote access for administration, technical support, or telecommuting. Unlike proprietary solutions like Microsoft RDP, VNC is free and works across many platforms, but it lacks built-in encryption, so it is often tunneled over SSH or VPN for security.
Must Know for Exams
The Network+ exam (N10-008/009) tests VNC in several specific areas. First, **port numbers**: candidates must know that VNC uses TCP port 5900 (and 5800 for HTTP access). Second, **protocol characteristics**: VNC is an Application Layer protocol using the RFB protocol, and it is platform-independent.
Third, **security**: VNC does not encrypt traffic by default, so it should be used with SSH tunneling or VPN. Fourth, **comparison to other remote access protocols**: VNC vs. RDP (Microsoft proprietary, encrypted, more efficient) vs.
SSH (command-line only, encrypted). Fifth, **use cases**: VNC is ideal for cross-platform remote control and for accessing headless servers. Exam questions may ask which port VNC uses, which protocol it is based on, or why VNC is less secure than RDP.
Candidates should also know that VNC can be used for screen sharing and remote support, and that it is not suitable for unsecured networks without additional protection.
Simple Meaning
Imagine you are sitting at your desk, but your computer is in another room. VNC is like having a magical window that lets you see your computer's screen from wherever you are, and a pair of invisible hands that let you move the mouse and type on the keyboard. You can open files, run programs, and do everything as if you were physically there.
It is like a remote control for your entire desktop. For example, a tech support person in India can use VNC to see and fix a computer in New York, just as if they were sitting in front of it. The magic works because VNC sends pictures of the screen from the remote computer to your local device, and sends your clicks and keystrokes back.
It is simple, free, and works between different types of computers—Windows, Mac, Linux—without needing special hardware.
Full Technical Definition
VNC (Virtual Network Computing) is a remote desktop protocol that implements the Remote Frame Buffer (RFB) protocol, which operates at the Application Layer (Layer 7) of the OSI model. The RFB protocol is defined in IETF RFC 6143. VNC uses a client-server architecture: the VNC server runs on the remote machine and shares its screen, while the VNC viewer (client) connects to the server to display and interact with that screen.
By default, the server listens on TCP port 5900 (display :0), with additional displays using port 5900+N (e.g., display :1 uses port 5901). An optional HTTP server on port 5800 allows browser-based access via a Java applet.
The protocol is pixel-based: the server sends raw framebuffer updates (rectangles of pixel data) to the client, and the client sends keyboard and mouse events back. VNC supports various encodings (e.g.
, raw, copyrect, hextile, tight, zlib) to compress screen updates and reduce bandwidth. It does not natively encrypt traffic, making it vulnerable to eavesdropping; thus, it is commonly tunneled over SSH or used with a VPN. Compared to Microsoft RDP, VNC is platform-independent but less efficient and less secure out of the box.
Compared to Citrix ICA, VNC is simpler but lacks session management and application virtualization. VNC is open source, with popular implementations including TightVNC, RealVNC, and UltraVNC. It is widely used for remote administration, help desk support, and accessing headless servers.
Real-Life Example
Maria, a network administrator for a mid-sized company, receives an urgent call from a sales executive who is traveling and cannot access a critical file on his office Windows PC. Maria opens her Linux laptop and launches a VNC viewer. She enters the IP address of the executive's office PC (which has a VNC server running) and the display number (e.
g., 192.168.1.50:0). After a brief connection, she sees the Windows desktop on her screen. She navigates to the file, attaches it to an email, and sends it to the executive. She also notices the PC is low on disk space, so she runs a disk cleanup utility.
Throughout the session, the executive watches remotely and confirms the fix. The entire process takes less than five minutes. Maria then disconnects the VNC session, leaving the PC running normally.
This example shows how VNC enables real-time remote control across different operating systems, saving time and travel costs.
Why This Term Matters
Understanding VNC is critical for IT professionals because it is a free, cross-platform remote desktop tool that works in heterogeneous environments. It is often the only option when proprietary protocols like RDP are not available (e.g.
, on Linux or macOS). Knowing how to set up, secure, and troubleshoot VNC is essential for remote administration, help desk support, and managing headless servers. VNC's lack of native encryption means IT pros must know how to tunnel it over SSH or use a VPN to prevent data interception.
On the Network+ exam, VNC appears in questions about remote access protocols, port numbers, and security considerations. Mastery of VNC demonstrates practical networking knowledge and the ability to support diverse systems.
How It Appears in Exam Questions
Exam question patterns for VNC include: (1) 'Which port does VNC use by default?' – correct answer: TCP 5900; wrong answers: 3389 (RDP), 22 (SSH), 443 (HTTPS). (2) 'Which of the following is a characteristic of VNC?'
– correct: platform-independent; wrong: only works on Windows, uses encryption by default. (3) 'A technician needs to remotely control a Linux server from a Windows PC. Which protocol should they use?'
– correct: VNC; wrong: RDP (RDP is Microsoft-only, though some Linux servers support it via xrdp). (4) 'Why should VNC be used with SSH tunneling?' – correct: VNC does not encrypt traffic; wrong: VNC uses too much bandwidth, VNC is slow.
The key is to remember VNC's open-source, cross-platform nature and its lack of native encryption.
Practise VNC Questions
Test your understanding with exam-style practice questions.
Example Scenario
1. Sarah, a help desk technician, gets a call from a user whose Windows PC is frozen. 2. Sarah asks the user to run the VNC server application on their PC and provide the IP address shown.
3. Sarah opens her VNC viewer on her Linux laptop and types the IP address followed by ':0' (e.g., 10.0.0.25:0). 4. The viewer connects and displays the user's frozen desktop. Sarah uses her mouse to close the unresponsive program.
5. The user confirms the PC is working again. Sarah disconnects the VNC session. This scenario shows how VNC allows remote control across different operating systems for troubleshooting.
Common Mistakes
VNC uses port 3389 by default.
Port 3389 is used by Microsoft RDP, not VNC. VNC uses TCP port 5900 (and optionally 5800 for HTTP). Confusing these ports is a common error on the Network+ exam.
Remember: VNC = 5900, RDP = 3389.
VNC encrypts all traffic by default.
VNC does not natively encrypt traffic. The RFB protocol sends screen data and input events in plaintext, making it vulnerable to sniffing. Encryption requires additional measures like SSH tunneling or VPN.
VNC is not secure out of the box; always use SSH or VPN.
VNC only works on Windows.
VNC is platform-independent. It was designed to work across different operating systems, including Windows, macOS, Linux, and even some mobile platforms. This cross-platform capability is a key advantage over RDP.
VNC works on any OS; it is cross-platform.
Exam Trap — Don't Get Fooled
{"trap":"The most dangerous misconception is that VNC uses port 3389 (RDP) by default, leading candidates to choose the wrong port in questions about remote desktop protocols.","why_learners_choose_it":"Candidates often associate 'remote desktop' with RDP (Microsoft's protocol), which uses port 3389. Since VNC also provides remote desktop functionality, they incorrectly assume it uses the same port."
,"how_to_avoid_it":"Always associate VNC with port 5900. Create a mnemonic: 'VNC = 5900 (5+9+0+0 = 14 letters in Virtual Network Computing).' RDP = 3389. Never mix them."
Commonly Confused With
RDP is a proprietary Microsoft protocol that is more efficient and encrypts traffic by default, but it is primarily limited to Windows-to-Windows connections. VNC is open source, cross-platform, and unencrypted by default.
Use RDP to connect from a Windows PC to a Windows server; use VNC to connect from a Linux laptop to a Windows PC.
SSH provides encrypted command-line access to remote systems, while VNC provides unencrypted graphical desktop access. SSH can be used to tunnel VNC traffic for security.
Use SSH to securely edit a config file on a server; use VNC to see and control the server's full desktop environment.
Step-by-Step Breakdown
Step 1 — VNC Server Starts
The VNC server application runs on the remote computer, capturing the screen's framebuffer (pixel data) and listening on TCP port 5900 for incoming connections.
Step 2 — VNC Viewer Initiates Connection
The user launches a VNC viewer (client) on their local machine and enters the remote computer's IP address and display number (e.g., 192.168.1.10:0). The viewer sends a connection request to the server.
Step 3 — Authentication and Handshake
The server may request a password (VNC authentication is simple and not encrypted). After successful authentication, the RFB protocol handshake establishes protocol version and encoding preferences.
Step 4 — Screen Updates Sent to Viewer
The server continuously sends framebuffer updates (rectangles of pixel data) to the viewer, which decodes and displays them. The viewer sends keyboard and mouse events back to the server.
Step 5 — Session Termination
When the user closes the viewer or the server stops, the TCP connection is closed. The server may continue running, ready for new connections.
Practical Mini-Lesson
**Core Concept**: VNC (Virtual Network Computing) is a remote desktop protocol that allows a user to control another computer's graphical interface over a network. It is based on the Remote Frame Buffer (RFB) protocol, which works by sending screen updates as pixel rectangles from the server to the client, and sending keyboard/mouse events from the client to the server. **How It Works**: The VNC server captures the framebuffer (the screen's pixel data) and encodes it using one of several compression methods (e.
g., Tight, Hextile). The client decodes and displays the image. When the user moves the mouse or types, the client sends those events to the server, which injects them into the operating system.
This creates a real-time interactive session. **Comparison to Similar Technologies**: VNC is often compared to Microsoft RDP. RDP is more efficient (uses less bandwidth) and encrypts traffic by default, but it is proprietary and primarily works between Windows systems.
VNC is open source and cross-platform, but it uses more bandwidth and lacks encryption. SSH is another remote access tool, but it is command-line only, not graphical. **Key Takeaway**: VNC is the go-to solution for cross-platform remote desktop control, but it must be secured with SSH tunneling or a VPN to protect data in transit.
On the Network+ exam, remember that VNC uses TCP port 5900, is platform-independent, and is not encrypted by default.
Memory Tip
Remember VNC as 'Very Nice Control' – it lets you control any computer from anywhere. For the port, think '5900 = 5+9+0+0 = 14, and 14 is the number of letters in 'Virtual Network Computing' (count them: V-i-r-t-u-a-l- -N-e-t-w-o-r-k- -C-o-m-p-u-t-i-n-g = 14).
Covered in These Exams
Current Exam Context
Current exam versions that test this topic — use these objectives when studying.
N10-009CompTIA Network+ →220-1101CompTIA A+ Core 1 →Legacy Exam Context
Older materials may mention these exam versions, but learners should use the current objectives for their target exam.
N10-008N10-009(current version)Related Glossary Terms
AH (Authentication Header) is an IPsec protocol that provides connectionless integrity, data origin authentication, and anti-replay protection for IP packets.
AH (Authentication Header) is an IPsec protocol that provides connectionless integrity, data origin authentication, and anti-replay protection for IP packets.
An AP (Access Point) bridges wireless clients to a wired network, acting as a central transceiver and controller for Wi-Fi communications.
An API is a set of rules that allows software applications to communicate and exchange data with each other.
BCP is a proactive process that creates a framework to ensure critical business functions continue during and after a disruptive event.
BNC (Bayonet Neill-Concelman Connector) is a miniature coaxial connector used for terminating coaxial cables in networking, video, and RF applications.
Frequently Asked Questions
What port does VNC use by default?
VNC uses TCP port 5900 for the main connection (display :0). Additional displays use port 5900+N (e.g., display :1 uses port 5901). An optional HTTP server for browser access uses port 5800.
Is VNC secure?
VNC does not encrypt traffic by default, so it is not secure on untrusted networks. To secure VNC, use SSH tunneling, a VPN, or a VNC implementation that supports encryption (e.g., RealVNC with AES).
What is the difference between VNC and RDP?
RDP is a Microsoft protocol that is more bandwidth-efficient and encrypts by default, but it is primarily Windows-only. VNC is open source, cross-platform, and unencrypted by default. RDP uses port 3389; VNC uses port 5900.
Can VNC be used over the internet?
Yes, but it is risky without encryption. For internet use, always tunnel VNC over SSH or use a VPN. Some VNC implementations offer built-in encryption for internet scenarios.
What is the RFB protocol?
RFB (Remote Frame Buffer) is the protocol underlying VNC. It defines how screen updates (pixel rectangles) are sent from server to client and how input events are sent from client to server. It is defined in RFC 6143.
Summary
(1) VNC (Virtual Network Computing) is a cross-platform remote desktop protocol that uses the RFB protocol to share a graphical desktop over a network. (2) It operates at the Application Layer (Layer 7) and uses TCP port 5900 by default. (3) The most important exam fact: VNC does not encrypt traffic natively, so it must be used with SSH tunneling or a VPN for secure remote access.