LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 07-16-2004, 05:02 PM   #1
bojo
LQ Newbie
 
Registered: Nov 2003
Location: vancouver, bc
Distribution: Mandrake 9.2
Posts: 6

Rep: Reputation: 0
SSH-Tunnels, Firewall, VNC


Hi Guys,
I am trying to establish office - home connection over SSH and a tunnel for VNC. Simple SSH works, forwarding X works but when I try forward port I am faling.

ssh -4 -L 7222:111.111.111.111:5902 myname@111.111.111.111

At work VNC - non encrypted works. At home on the local machine only the forwarding works and if connect the VNCviewer to port 7222 it will be redirected correctly to 5902. However every time I try from the office I am failing. Tried OSX and Win2k. Netstat shows that the ports are open and listening. I tried to monitor the connection while I am trying to connect with the vnc viewer. The thing I noticed is "sync sent" from home but it seems it never synchronize.

At the office there is a sophisticated firewall that in general would filter all the ports. Only 80 is open free from the common ones. I haven't tested the whole range but this is what I would assume. Is it possible the reason to be in the firewall at all? to be "that" restrictive? or there is something wrong in my configs?

Please, any advice would be appreciated!

bojo
 
Old 03-15-2006, 10:36 PM   #2
mazinoz
Member
 
Registered: Mar 2003
Location: Mansfield Queensland Australia
Distribution: Linux Mint - Tara
Posts: 497

Rep: Reputation: 35
I'm pretty certain you would need to open the relevant ports on the server otherwise it will not work. If it is a squid proxy server only 3128 may be open. If you are
not the admin there you had better have a chat with them about this as they will want to know!
 
Old 03-15-2006, 10:59 PM   #3
jiml8
Senior Member
 
Registered: Sep 2003
Posts: 3,171

Rep: Reputation: 116Reputation: 116
If you are trying to use your home machine as a client to connect to the office machine, then you will have to leave a client running on the home machine, then set up a reverse tunnel on the office machine in order to get through the firewall. Probably port 443 is open on the firewall; it is not uncommon to tunnel SSH through that port - and your administrator might not even notice although your firewall probably will report it.
 
Old 03-16-2006, 06:08 AM   #4
overlord73
Member
 
Registered: Apr 2004
Location: ..where no life dwells..
Posts: 541

Rep: Reputation: 30
hi,
an office -> home connection?! means u have a linux at home running vnc-server?
easy way:
1. activate x-forwarding in home-sshd
2. ssh -Y name@home
3. start x-apps or start vnc-viewer

...or have I something missunderstood?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Server Defined SSH Tunnels dlublink Linux - Software 1 09-29-2005 09:11 PM
Creating a router out of SSH Tunnels. Technoslave Linux - Networking 1 10-04-2004 07:07 PM
SSH tunnels and VNC, yet again. Edaph Linux - Security 7 05-23-2004 10:55 AM
Automatic SSH Tunnels fearofcarpet Linux - Software 1 12-05-2003 12:36 AM
ssh, vnc, firewall hstang Linux - Security 3 01-03-2003 03:41 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:24 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration