LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 11-02-2006, 04:21 PM   #1
ReFoxed
LQ Newbie
 
Registered: Nov 2006
Posts: 4

Rep: Reputation: 0
University blocking ventrilo port, ssh needed?


I have been searching for quite awhile but I just can't seem to find a solution anywhere. So excuse me for asking if this has alread been dealt with before.

I have a friend at university in the dorms and he sits behind an evil firewall which blocks almost everything. What he would love to do however is gain access to our ventrilo server (on port 3828 ) however this port is blocked. I however am NOT sat behind a firewall and I have a ubuntu server (6.10) installed which ssh.

I can see I have ssh installed because when i go sshd -v I get feedback. And I can also log onto the computer through ssh and play around with files and add and delete and move thinsg as i see fit (through my own personal network).

Now my friend who would like to access our ventrilo (through 3828, which is currently blocked) uses windows and will probably be using putty.

How would I go about configuring my system (linux server, not behind a firewall) and his putty (behind a firewall and using windows) so that I could forward the ports so that he can access our ventrilo? I have tried looking at guides but they either seem not relevent or just confusing.

*ADDITION*

He can also access my server via SSH and log in and browse etc etc, however the port forwarding still eludes me, we access my ubuntu server on port 22. Is this even possible?

so we have 3 computers here

his computer (windows, putty and blocked port of 3828 )
my server (ubuntu, not blocked qith SSH installed)
and the vetrilo server (uses port 3828 )

Thank you for reading
 
Old 11-03-2006, 10:04 AM   #2
stress_junkie
Senior Member
 
Registered: Dec 2005
Location: Massachusetts, USA
Distribution: Ubuntu 10.04 and CentOS 5.5
Posts: 3,873

Rep: Reputation: 331Reputation: 331Reputation: 331Reputation: 331
You probably won't get any help with your question. You are trying to circumvent the network policy of the college. That's probably illegal and it is certainly immoral. Adults generally don't do this sort of thing.
 
Old 11-03-2006, 10:17 AM   #3
ReFoxed
LQ Newbie
 
Registered: Nov 2006
Posts: 4

Original Poster
Rep: Reputation: 0
Adults? please ... spare me with the belittling crap, what a rediculus and pathetic thing to say, it's obvious to see where you get your daily kicks from. It was a simple question, nothing which had to be responded in such a pathetic manner. Personally I don't see the problem when there is an over zealous firewall, you could of even said "this is not supported on the forums" and thats it. But ofc, like 99% of the internet, your an ass.

Cheers.
 
Old 11-03-2006, 11:54 AM   #4
ReFoxed
LQ Newbie
 
Registered: Nov 2006
Posts: 4

Original Poster
Rep: Reputation: 0
forget it I have managed to do it now.
 
Old 11-25-2006, 12:39 PM   #5
JamesNewbie
LQ Newbie
 
Registered: Jan 2006
Location: Sarasota, FL
Distribution: Fedora
Posts: 27

Rep: Reputation: 15
Problems with ventrilo also

Hey, I am trying to use ventrilo server on a FC5 box and connect with a windows XP box, but I cannot connect. The two computers are on the same network behind the same firewall even. I try to connect with the network IP and the Internet IP and neither seems to work. Is there something I have to do to get my xp computer to see my linux computer?

Oh, and by the way, I don't think what you were doing was illegal or unethical. I used to live on a college campus and for security reasons they used firewalls. And they didn't let people open ports because it would be stupid to let 10,000+ students open whatever ports they saw fit. Finding a way around the firewall that doesn't compromise the security of everone's computer on campus is perfectly fine.
 
Old 11-25-2006, 01:33 PM   #6
bulldozer
LQ Newbie
 
Registered: Oct 2003
Location: Chicago
Distribution: Slackware
Posts: 9

Rep: Reputation: 0
Quote:
Originally Posted by stress_junkie
You probably won't get any help with your question. You are trying to circumvent the network policy of the college. That's probably illegal and it is certainly immoral. Adults generally don't do this sort of thing.
I'm sorry but sometimes laws and policies are not fair and should sometimes certainly be broken. I do not know exactly what ventrilo is, but if it doesn't hog tons of bandwidth, why shouldn't he be able to use it? All too often I see responses to people's questions answered by: "thats illegal, your an amoral person, go away." If you think you lie on some higher plain of morality than the rest of us good for you, I'm sure the system loves you, good luck making a difference or getting your name in a history book.
 
Old 11-26-2006, 02:56 AM   #7
chort
Senior Member
 
Registered: Jul 2003
Location: Silicon Valley, USA
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660

Rep: Reputation: 69
Hopefully I'm getting my syntax right here, but you should be able to do this in order to forward your Ventrillo connection through an external host. Keep in mind this means that you will tell Vent that the IP address of the server is 127.0.0.1!
Code:
ssh -f -L localhost:3828:ventrilo.server:3828 ubuntu.server sleep 10
PS, if the University is providing Internet access than you may access the Internet. Unless they only allow access to the web and through their own proxies, you can make whatever outbound TCP/IP connects you want, including SSH. Any network that allows SSH is, knowingly or not, allowing access to any TCP service. Is it illegal to circumvent a firewall like this? Standard disclaimer: IANAL, but it would not appear to be illegal from my layman's point of view.

Is it immoral? It depends what you consider the definition of "moral" to be. If it means "never do anything that someone else might not wish for you to do", then quite possibly, yes it's immoral. However if you take what most people would consider to be a more realistic point of view, you're not "cheating" anyone out of anything. If your access to the 'net isn't throttled, then you can use as much bandwidth as you want. If the university wants to limit the amount of bandwidth they pay for, they should explicitly throttle it with traffic-shaping/QoS. If your 'net access is throttled, then you cannot possibly be stealing anything because it's already been limited to what "The Powers That Be" deem reasonable. I find it very, very difficult to make a case for immorality here.

PS I have what most people would consider to be a very "upstanding" job as a field engineer for a security software company. Part of my job is going to customer sites and fixing their problems, or assisting them with our software. I maintain an SSH server on my home network specifically for using to forward ports so I can get access to the Internet from most customer sites, even when they think they have blocked all web access. Is it immoral for me to bypass the "security" they have in place? Well maybe it's a little underhanded, but at the end of the day it's getting their problems solved faster by giving me access to information resources in real-time. The end-goal of the customer's restrictions on Internet usage is to cause them less problems, so by me bypassing the restrictions, it's actually accomplishing their intent, even though I'm violating their rules.

Last edited by chort; 11-26-2006 at 03:00 AM.
 
Old 11-27-2006, 01:38 AM   #8
ReFoxed
LQ Newbie
 
Registered: Nov 2006
Posts: 4

Original Poster
Rep: Reputation: 0
Thank you very much for replying with many an hour browsing the net and some reading up on the official ssh guide, I put what you did in which I am quite chuffed about, however Ventrilo (voice communication eats 3-4kbs per sec max) really doesn't like shh and only allows partial usage (cannot transmit, even though he could connect to our server now). He recently invested in a product called http tunnel which does the job and more (corrects all problems), though I would like to thank the helpful posts which have been posted and brush the somewhat obvious ones under the carpet. I am not interested because breaking of the firewall is cool or funny, it's because it's wrong, and whilst people are abusive whilst using torrents and such people who just want to talk with friends are paying the price.
 
Old 11-28-2006, 08:21 PM   #9
Brightbrute
LQ Newbie
 
Registered: Dec 2005
Posts: 3

Rep: Reputation: 0
Quote:
Originally Posted by chort
Hopefully I'm getting my syntax right here, but you should be able to do this in order to forward your Ventrillo connection through an external host. Keep in mind this means that you will tell Vent that the IP address of the server is 127.0.0.1!
Code:
ssh -f -L localhost:3828:ventrilo.server:3828 ubuntu.server sleep 10
Thread Necromancy: Is there anyway to do this on Windows Ventrilo /OpenSSH?
 
  


Reply

Tags
ssh tunnel


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
iptables help! DROP ssh port, but allow to connect to ssh if from 2222 port kandzha Linux - Networking 4 09-13-2006 09:10 AM
Bridge (with port blocking) needed! SWAT Linux - Newbie 11 01-06-2006 05:49 PM
Linux Advertisement Blocking Program Needed cousinlucky Linux - Newbie 17 12-22-2005 11:29 AM
port blocking BwiNfon Linux - Security 4 09-25-2003 10:51 AM
port blocking EyaL Linux - Security 3 10-19-2002 08:58 PM


All times are GMT -5. The time now is 08:07 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration