VisualVM through Firewalls - RMI Troubleshooting

Sorry for this question, which must have been asked many times, but I cannot succeed in solving my problem. I read a lot of blogs, sites, forums, ... and did not find a solution in my case.

Case: I need to connect VisualVM on my box to remote servers (tomcats, weblogics) to monitor performance / threads / memory. These servers are installed on (physical or virtual) machines that are protected by a firewall. Large port spans are open in the firewall and may be used, but not in all ports.

Test

• I tried direct connections through JMX in VisualVM using the following server-side JVM options when starting the server:

   -Djava.rmi.server.hostname=[hostname] -Dcom.sun.management.jmxremote -Dcom.sun.management.jmxremote.port=[port] -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.authenticate=false 

I determined the host name because from my network the host name and IP address of the server do not match the names from the network of the remote server.

No success, VisualVM is always looking for an unknown server.

• tried to run jstatd on the server side on an accessible port (-p) from my window (telnet works on this port), but when running visualVM on this host with the jstatd port it still seems to be waiting for something unattainable .... Same behavior when connecting jps to this remote host.

• tried using the same tools on a server with less network protection, and it works. Thus, I saw the connections between my mailbox and the server, and they run on ports other than what I specified jstatd. I understand that this port is necessary for the first connection (a kind of handshake), and real communications are performed on other ports, but are not predictable (for example: 60305, 55197, ...). Not sure if I understand very well how RMI works.

Please help me, I'll lose my mind!