SSH Port Forwarding through a firewall

From: Chris (usenet@cmulcahy.mailshell.com)
Date: 02/08/03

• Next message: Chris: "Re: SSH Port Forwarding through a firewall"
• Previous message: jfkfcia@yahoo.com: "OpenSSH option to set default hostkey directory?"
• Next in thread: Chris: "Re: SSH Port Forwarding through a firewall"
• Reply: Chris: "Re: SSH Port Forwarding through a firewall"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Chris" <usenet@cmulcahy.mailshell.com>
Date: Sat, 08 Feb 2003 01:04:49 GMT

Greetings:

I have a simple setup but would like some guidance on setup and usage
of SSH.

I have a Linux box running:
  SSH Version 1.2.25 [i586-unknown-linux], protocol version 1.5.

I also have a Windows box running:
  OpenSSH_3.5p1, SSH protocols 1.5/2.0, OpenSSL 0x0090607f

The Linux box is behing my router/firewall at home. I am only allowing
port 22 (which has SSH) through for obvious reasons. I would like to
use my proxy server at home (Privoxy with banner/popup filtering).
What commands would I use to get this running?

Within the firewall on a machine with full access, I've used:
  ssh -l chris -L 4444:proxybox:3128 proxybox

That is successful, but requires access to port 3128 on the proxybox (I
believe that's what it's doing, right?) and setting my browser proxy
server to http://127.0.0.1:4444. I've been unsuccessful doing the same
thing from outside the firewall.

After writing this message, it is appearing to me as if it should have
worked. SSHd should be forwarding from port 22 to port 3128 on the
proxybox. Hmm. Any suggestions?

Just to head off the question, yes, I am able to ssh into this proxybox
from outside the firewall.

Thanks for any help!
Chris

---

• Next message: Chris: "Re: SSH Port Forwarding through a firewall"
• Previous message: jfkfcia@yahoo.com: "OpenSSH option to set default hostkey directory?"
• Next in thread: Chris: "Re: SSH Port Forwarding through a firewall"
• Reply: Chris: "Re: SSH Port Forwarding through a firewall"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: root trying to ssh but being denied ... > users to ssh to this machine. ... they were both from machines running Linux: ... PORT STATE SERVICE ... TCP Sequence Prediction: Class=random positive increments ... (comp.os.linux.security) Re: Syslog over SSH ... I believe I have figure out my ssh tunnel problems, however, I am still ... I have setup public key encryption to keep from having to ... directly using syslog and changed the configuration to test with SSH ... to bind to the syslog port) ... (RedHat) Re: inbound connection through wireless router ... Installing an embedded-device Linux on a router sounds a bit daunting ... Can that port forwarding be done on an out-of-the box router? ... Can this be set up in such a way that I can still ssh into my home ... (uk.comp.os.linux) Re: sshd question ... Three days ago my Linux box stopped ... piotrs from 201.63.24.60 port 46229 ssh2 ... Couple of things on securing ssh. ... (comp.os.linux.networking) Re: executing commands from telnet from D3 ... "Would the ssh command on the remote linux box allow me to get to the ... your user on the linux box would have to first log ... to port 4444/tcp. ... (comp.databases.pick)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > comp.security.ssh  > 2003-02