Reverse SSH (or other tunnel/VPN)
Matthew Carpenter
matt
Sun Dec 19 18:17:21 PST 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Yes.
If you simply want a tunnel to a port on the remote system, and you want
it to be originated from that system:
remote# ssh -R <RMTPORT>:<lclhostname>:<lclport> <REMOTEHOST> vi
</dev/null >/dev/null 2>&1 &
This sets the <REMOTEHOST> to listen on <RMTPORT> and tunnels the
connection the <lclhostname> on port <lclport>
All these are as the executing system sees things. So if this is run on
a client system behind a NAT, <lclhostname> could be "localhost" or it's
domain name, even if the other system can't actually "get back".
I do this in reverse for pulling and sending mail from my home-network.
Michael Hipp wrote:
| Short version:
| Is there any way to do an SSH connection where it is initiated from the
| host? Or is there some other type of host-initiated tunnel/VPN?
|
| Long version:
| I just gained a new client that will have a Linux server for their small
| business. They're out in the woods (literally) and will have satellite
| Internet. If they go with DirecWay satellite, it has an impenetrable NAT
| so connections into their server from outside will be impossible. But I
| need a way to remote admin this box (securely, of course).
|
| Any ideas appreciated.
|
| Michael
| _______________________________________________
| Linux-users mailing list
| Linux-users at linux-sxs.org
| http://mail.linux-sxs.org/cgi-bin/mailman/listinfo/linux-users
|
| Need to chat further on this subject? Check out #linux-users on
| irc.linux-sxs.org !
|
|
|
- --
Matthew Carpenter
matt at eisgr.com http://www.eisgr.com/
Enterprise Information Systems
* Network Server Appliances
* Security Consulting, Incident Handling & Forensics
* Network Consulting, Integration & Support
* Web Integration and E-Business
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFBxgpCso9lqh4MragRAhhiAJ0cZo1Pt5PIV2B4wusqbEdBL4cbpwCePlhd
9mco8D6i6Zno+xMr6WjvFV0=
=/ei1
-----END PGP SIGNATURE-----
More information about the Linux-users
mailing list