LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 06-15-2006, 02:08 PM   #1
Linux~Powered
Member
 
Registered: Jan 2004
Location: /lost+found
Distribution: Slack`er-current
Posts: 845

Rep: Reputation: 31
SSH and Putty...


I'm trying so SSH from work to home with Putty. My work place pretty much restricts every thing through a proxy server only letting 80 and 443 through. As of now I have my Linux box listening on port 443 so I can tunnel through the proxy server. When I run Putty I put my ipaddress in on port 443, then I go to the proxy part and put in HTTP proxy2 on port 443 but I still cant connect it just hangs. Am I doing this wrong or is there another way to accomplish this.

Edit: It's not my firewall or router either.

Last edited by Linux~Powered; 06-15-2006 at 02:09 PM.
 
Old 06-15-2006, 02:20 PM   #2
cachemonet
Member
 
Registered: Jan 2006
Distribution: Various versions of Red Hat Fedora Core and Ubuntu
Posts: 40

Rep: Reputation: 15
Since you are restricted to outbound 80 (443) at work, you need to force your firewall to listen to 80 (or 443) and forward to 22 on the ip of your PC. I can not get more specific until I have more information about your firewall.
 
Old 06-15-2006, 02:30 PM   #3
Linux~Powered
Member
 
Registered: Jan 2004
Location: /lost+found
Distribution: Slack`er-current
Posts: 845

Original Poster
Rep: Reputation: 31
Quote:
you need to force your firewall to listen to 80 (or 443) and forward to 22 on the ip of your PC.
My firewall is letting 443 through. So you're saying once the packets get through my firewall on 443 I need to forward them back to my work box on port 22?

In my firewall I have the following for SSH...

Default's are:

INPUT DROP
OUTPUT ACCEPT
FORWARD DROP

iptables -A INPUT -p tcp -d 0/0 -s 0/0 --dport 443 -j LOG_ACCEPT_SSH
iptables -A INPUT -p tcp -d 0/0 -s 0/0 --dport 443 -j ACCEPT
 
Old 06-15-2006, 02:37 PM   #4
osor
HCL Maintainer
 
Registered: Jan 2006
Distribution: (H)LFS, Gentoo
Posts: 2,450

Rep: Reputation: 70
Quote:
Originally Posted by Linux~Powered
My firewall is letting 443 through. So you're saying once the packets get through my firewall on 443 I need to forward them back to my work box on port 22?

In my firewall I have the following for SSH...

Default's are:

INPUT DROP
OUTPUT ACCEPT
FORWARD DROP

iptables -A INPUT -p tcp -d 0/0 -s 0/0 --dport 443 -j LOG_ACCEPT_SSH
iptables -A INPUT -p tcp -d 0/0 -s 0/0 --dport 443 -j ACCEPT
It depends on what port your server is allowed to listen to. What are the iptables rules for the box containing the server? To be sure it's not a problem with the route, try doing a test without ssh (i.e., setup netcat to listen on 443 on your box. then use netcat from your other box with the destination of port 443. See if you can talk to each other).
 
Old 06-15-2006, 02:50 PM   #5
cachemonet
Member
 
Registered: Jan 2006
Distribution: Various versions of Red Hat Fedora Core and Ubuntu
Posts: 40

Rep: Reputation: 15
Do you have a dedicated firewall before the ssh server?

On the ssh server type cat /etc/ssh/sshd_config | grep -i port
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
putty,ssh etc problems Braveheart1980 Linux - General 10 01-06-2006 12:46 PM
Kde over Putty - SSH Black187 Linux - Networking 6 12-08-2005 03:28 PM
esound over ssh / putty? oldweasel Linux - Networking 6 05-27-2004 02:05 PM
SSH using putty rkemp Linux - Networking 3 03-06-2004 05:04 PM
ssh and using putty from the client ashley75 Linux - General 12 09-11-2003 01:21 PM


All times are GMT -5. The time now is 02:43 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration