Running X window graphical application over ssh session

SSH, server has feature called X11Forwarding. It specifies whether X11 forwarding is permitted or not. You need to set this parameter to yes. Once this is enabled, you will be able to run a graphical application on server and get applications display (window) on your desktop.

Server setup
For example, login on Linux/BSD system called server1.mydomain.com. Open /etc/ssh/sshd_config file using text editor:

# vi /etc/ssh/sshd_config

Find out parameter X11Forwarding and set it to yes:

X11Forwarding yes

Save file and exit to shell prompt. Restart sshd service under Debian Linux:

# /etc/init.d/ssh restart

Alternatively, if you are using Fedora / Red Hat Linux restart sshd:

# /etc/init.d/sshd restart

Desktop setup
Since X11 forwarding is enabled, just login from desktop system to server1.mydomain.com using ssh command:

desktop $ ssh -X user@server1.mydomain.com

Password:
server1 $
When you login using ssh command, you need to use -X flag to enable X11 forwarding. If you do not use -X flag forwarding it will not work and you will get an error that read as follows:
couldn’t open display (null)

Once you are logged in to server1, if you type the X application command over ssh session, the application will run on server1 and display will appear on your desktop system. For example, run xeyes or open office program:

server1 $ xeyes &
server1 $ ooffice &

Within few seconds, you should get a graphical display on your desktop system.

Posted by: Vivek Gite

The author is the creator of nixCraft and a seasoned sysadmin, DevOps engineer, and a trainer for the Linux operating system/Unix shell scripting. Get the latest tutorials on SysAdmin, Linux/Unix and open source topics via RSS/XML feed or weekly email newsletter.

5 comment

Replace -X with -Y for a trusted/encrypted session :-j

Great article! Hoe would one achieve the same if there is another machine inbetween like this:
Desktop -> WRT54GL (OpenWrt) -> Server. I know there is a way one can forward packets via ssh, but how?

Thanks again.

Hi all,
can we make some changes in the sshd config file so that everytime we don’t have to specify -X or -Y option for opening a graphical interface??

in the file
/home//.ssh/config

you can add

Host ahost
ForwardX11 yes

to always enable for that host

or use

Host *
ForwardX11 yes

to always enable it

is there any solution if a program like firefox is already open at server , then as a clinet if i try to open firefox then it shows the program is already running.

Anonymous says:
April 22, 2006 at 12:50 pm
Replace -X with -Y for a trusted/encrypted session :-j
Lifeboy says:
June 3, 2008 at 9:21 am
Great article! Hoe would one achieve the same if there is another machine inbetween like this:
Desktop -> WRT54GL (OpenWrt) -> Server. I know there is a way one can forward packets via ssh, but how?
Thanks again.
anon says:
July 22, 2008 at 1:21 am
Hi all,
can we make some changes in the sshd config file so that everytime we don’t have to specify -X or -Y option for opening a graphical interface??
Marmalade says:
March 28, 2009 at 10:10 am
in the file
/home//.ssh/config
you can add
Host ahost
ForwardX11 yes
to always enable for that host
or use
Host *
ForwardX11 yes
to always enable it
ashutoshh singh says:
November 11, 2013 at 4:51 pm
is there any solution if a program like firefox is already open at server , then as a clinet if i try to open firefox then it shows the program is already running.

Have a question? Post it on our forum!