Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
07-16-2004, 05:02 PM
|
#1
|
LQ Newbie
Registered: Nov 2003
Location: vancouver, bc
Distribution: Mandrake 9.2
Posts: 6
Rep:
|
SSH-Tunnels, Firewall, VNC
Hi Guys,
I am trying to establish office - home connection over SSH and a tunnel for VNC. Simple SSH works, forwarding X works but when I try forward port I am faling.
ssh -4 -L 7222:111.111.111.111:5902 myname@111.111.111.111
At work VNC - non encrypted works. At home on the local machine only the forwarding works and if connect the VNCviewer to port 7222 it will be redirected correctly to 5902. However every time I try from the office I am failing. Tried OSX and Win2k. Netstat shows that the ports are open and listening. I tried to monitor the connection while I am trying to connect with the vnc viewer. The thing I noticed is "sync sent" from home but it seems it never synchronize.
At the office there is a sophisticated firewall that in general would filter all the ports. Only 80 is open free from the common ones. I haven't tested the whole range but this is what I would assume. Is it possible the reason to be in the firewall at all? to be "that" restrictive? or there is something wrong in my configs?
Please, any advice would be appreciated!
bojo
|
|
|
03-15-2006, 10:36 PM
|
#2
|
Member
Registered: Mar 2003
Location: Mansfield Queensland Australia
Distribution: Linux Mint - Tara
Posts: 497
Rep:
|
I'm pretty certain you would need to open the relevant ports on the server otherwise it will not work. If it is a squid proxy server only 3128 may be open. If you are
not the admin there you had better have a chat with them about this as they will want to know!
|
|
|
03-15-2006, 10:59 PM
|
#3
|
Senior Member
Registered: Sep 2003
Posts: 3,171
Rep: 
|
If you are trying to use your home machine as a client to connect to the office machine, then you will have to leave a client running on the home machine, then set up a reverse tunnel on the office machine in order to get through the firewall. Probably port 443 is open on the firewall; it is not uncommon to tunnel SSH through that port - and your administrator might not even notice although your firewall probably will report it.
|
|
|
03-16-2006, 06:08 AM
|
#4
|
Member
Registered: Apr 2004
Location: ..where no life dwells..
Posts: 541
Rep:
|
hi,
an office -> home connection?! means u have a linux at home running vnc-server?
easy way:
1. activate x-forwarding in home-sshd
2. ssh -Y name@home
3. start x-apps or start vnc-viewer
...or have I something missunderstood?
|
|
|
All times are GMT -5. The time now is 03:24 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|