LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - General (http://www.linuxquestions.org/questions/linux-general-1/)
-   -   Howto do Secured ssh from port https or port80(standard) to ssh d listening port 22 ? (http://www.linuxquestions.org/questions/linux-general-1/howto-do-secured-ssh-from-port-https-or-port80-standard-to-ssh-d-listening-port-22-a-503703/)

Xeratul 11-21-2006 05:58 PM

Howto do Secured ssh from port https or port80(standard) to ssh d listening port 22 ?
 
Howto do Secured ssh from port https or port80(standard) to ssh d listening port 22 ?
====


I guess it is call tunneling, it is not easy to do i guess for novice.

The idea: there is a pc behind a nat that wanna ssh a distant pc listening port 22. We would like it secured. Is there a way ?

Is there any hints to do so, usually on the net , it is not meant for linux newbies and too dificult. Is slow step by step detailed information would be grateful.

Thank you for your help !

xeratul

unSpawn 11-21-2006 08:58 PM

I guess it is call tunneling, it is not easy to do i guess for novice. The idea: there is a pc behind a nat that wanna ssh a distant pc listening port 22. We would like it secured. Is there a way ?
Using OpenSSH *is* secure, else it wouldn't be called Secure SHell. If you would still want to tunnel ssh this command creates a tunnel from your local port 80 to a remote server running SSH whose IP address is 10.0.1.1: "ssh -L80:127.0.0.1:22 -t -N -2 10.0.1.1". Once authenticated in another window executing "ssh -p 80 localhost 'hostname -i' " should show the remote servers IP address. Note the local port 80 is just an example since ports below 1024 can only be forwarded by root, so if you're not root try for example 8080. If you work with tunnels a lot then it's no fun running and checking them: automate it using AutoSSH. For more interesting tunnel examples and explanation: http://souptonuts.sourceforge.net/sshtips.htm.

Xeratul 11-22-2006 04:27 PM

Quote:

Originally Posted by unSpawn
I guess it is call tunneling, it is not easy to do i guess for novice. The idea: there is a pc behind a nat that wanna ssh a distant pc listening port 22. We would like it secured. Is there a way ?
Using OpenSSH *is* secure, else it wouldn't be called Secure SHell. If you would still want to tunnel ssh this command creates a tunnel from your local port 80 to a remote server running SSH whose IP address is 10.0.1.1: "ssh -L80:127.0.0.1:22 -t -N -2 10.0.1.1". Once authenticated in another window executing "ssh -p 80 localhost 'hostname -i' " should show the remote servers IP address. Note the local port 80 is just an example since ports below 1024 can only be forwarded by root, so if you're not root try for example 8080. If you work with tunnels a lot then it's no fun running and checking them: automate it using AutoSSH. For more interesting tunnel examples and explanation: http://souptonuts.sourceforge.net/sshtips.htm.

ahh

I will try with putty behind the nat ...
will be not easy to set up the putty ; we like :Pengy:
(another day with ssh)

Thank you

Xeratul 11-22-2006 05:20 PM

Quote:

Originally Posted by Xeratul
ahh

I will try with putty behind the nat ...
will be not easy to set up the putty ; we like :Pengy:
(another day with ssh)

Thank you

I have another question in the same way.
Since you are good in info, please could you let me know whether it is possible to do double tunnelling.

I wanna pass PC1 NAT tunnel ---> fully open ports PC2 linux box ssh <-------- Nat tunnel PC3

(pc == computer)
I guess that can be possible by some thinking no and experience in linux ?

Thank you for your awaited & very helpful informations !!

Xeratul

Xeratul 11-23-2006 07:09 AM

Quote:

Originally Posted by Xeratul
I have another question in the same way.
Since you are good in info, please could you let me know whether it is possible to do double tunnelling.

I wanna pass PC1 NAT tunnel ---> fully open ports PC2 linux box ssh <-------- Nat tunnel PC3

(pc == computer)
I guess that can be possible by some thinking no and experience in linux ?

Thank you for your awaited & very helpful informations !!

Xeratul


without root rights, no forward is possible.

linux & win

:-(


All times are GMT -5. The time now is 06:26 PM.