LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 10-23-2006, 09:53 PM   #1
Mudhoney
LQ Newbie
 
Registered: Oct 2006
Location: Australia
Distribution: FC4 & 6
Posts: 8

Rep: Reputation: 0
How to tunnel out of corp VPN for yum updates?


Hello,

I have a FC5 box inside a corporate network. I'd like to be able to get yum updates but can't make that work using the yum Proxy directives in the config file. I believe this is somehow related to the user and password directives but can't make it work. Instead, I was wondering if I could tunnel to the outside somehow. There are two possible methods of egress: HTTP proxy (requiring authentication) and SOCKS 5 proxy (no auth). I also have an Internet-connected FC4 host on the outside. I can ssh to the outside host using SOCKS.

Two methods I've thought of so far that may work:

1. use OpenVPN client and server to tunnel to outside host via either SOCKS or HTTP proxy, then set up routing rule for VPN subnet on external host to NAT to Internet. Seems possible according to OpenVPN page, however at first glance it looks you can only send all traffic, not just port 80. Is this right?

2. use ssh port forwarding to redirect a local port to the outside host, then try to work out some routing rule to forward or NAT that traffic out to the 'net.

Any further clues on these options or other ideas?

Thanks,

Mud
 
Old 10-23-2006, 10:24 PM   #2
sn68
Member
 
Registered: Oct 2005
Distribution: FC5
Posts: 338

Rep: Reputation: 30
Check out following

Building a tunnel to bypass a firewall
Breaking Firewalls with OpenSSH and PuTTY

Last edited by sn68; 10-23-2006 at 10:25 PM.
 
Old 10-25-2006, 02:13 AM   #3
Mudhoney
LQ Newbie
 
Registered: Oct 2006
Location: Australia
Distribution: FC4 & 6
Posts: 8

Original Poster
Rep: Reputation: 0
Thanks. I'm already using Goto San's connect.c to cause my ssh connections to go via the SOCKS proxy. I can set up ssh port forwarding, say on port 80, to forward local connections over ssh through the SOCKS proxy then on to a specific destination. Problem is, yum needs to talk to many different URLs, so specifying a fixed destination isn't going to work. My only thoughts now are:

1. to set up a web proxy on my outside machine and set the port forwarding to talk to that, or
2. set up some fancy iptables rules on the outside machine to grab any incoming port 80 requests and forward them out to the default gateway. I guess there would also need to be a rule to handle the responses from the yum repos.

Last edited by Mudhoney; 10-25-2006 at 02:17 AM.
 
  


Reply

Tags
openvpn, proxy, ssh, tunnel, yum


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Using rdesktop through a VPN tunnel VideoLinux Linux - Networking 1 07-05-2006 08:41 AM
ssh tunnel and VPN metallica1973 Linux - Security 5 05-12-2006 12:54 AM
2.6: ping on established(!) VPN tunnel doesn't! sundialsvcs Linux - Networking 1 12-09-2005 05:09 PM
VPN Tunnel Through SSH gauge73 Linux - Networking 4 05-16-2004 08:24 PM
VPN tunnel dvong3 Linux - Networking 2 10-16-2002 03:20 AM


All times are GMT -5. The time now is 08:28 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration