Openssh Port Forwarding Confusion

From: Hank (william.quiter_at_sylvania.com)
Date: 12/23/03 

Date: 23 Dec 2003 00:57:52 -0800

First off, I would like to thank anyone that reads this; second, I
would like to thank doubly any one who responds to this - even if it
is a "Read the man page again dumbass!"

My confusion lies in the fact that I do not know too much a all about
ssh. I am tring to use Openssh on cygwin (as my client) and have been
successfull in forwarding X11 from my server(for now also cygwin on a
different computer untill I am done playing with the config stuff and
set up the real one on my sun box). I can run xclock! - I don't know
how I did it, but it work. I think there was something weird with the
ssh config files oncygwin that required a reboot on behalf of
windows2k - but don't hold me to that. it didn't work yestarday, but
today when I started both computers it just work(with the same
configuration as I left in it yestarday). I am going to re set this
up today, to find out where I was going wrong, but for now please know
that I have forwarded my X11 and my server client relation ship works.
Now for my Port forwarding question. I have read every man page, and
every Howto I can get my hands on - they just end up confusing me. I
figured out that I am missing something very fundimental, but I don't
know what it is. So far what I have extracted about ssh port
forwarding is:
I can forward ports

My hypothetical situation is this:

(ssh client) <--> (Proxy/firewall)<--internet-->(Home Nat)<-->(ssh
server)

what needs to be done to the server and the client if the only ports
that are open are port 80 on "(Proxy/firewall)" and port 5865 on
"(Home Nat)" ?
I am only guessing that this can be done - I don't think that I
understand this process yet to say for sure.

If you do answer I need to ask one more thing:
Please do not use the words "Host" or "localhost" unless you specify
(very explicitly) which computer you are talking about. This can be
very confusing if your point of view is from the server or from the
client.

I do not need a "Howto" but you are welcome to give one, I just need
to understand this process better.

Thank you all for your time, and I apolgize for any spelling mistakes.

Relevant Pages

  • Re: Unable to print to networked printer - get access denied messa
    ... Check the permissions on the server assuming the client has a true RPC ... How is the Standard TCP/IP port configured for the device? ...
    (microsoft.public.windowsxp.print_fax)
  • Re: interfaces lo:1 lo:2 lo:3? (for remote ssh tunnels)
    ... That's the problem tunneling (port forwarding) solves. ... >>can't get past the client firewall. ... > I don't understand why the server would be making the ... server initiates another connection to the client -- in this ...
    (Debian-User)
  • Re: Remote Connection Issue
    ... through port number 3389 and a workstation on the LAN through port number ... I understand that you want to allow a LAN client ... and you have configured server publishing rule ... > By default Terminal Server and Windows 2000 Terminal Services uses TCP ...
    (microsoft.public.windows.server.sbs)
  • Re: RealVNC
    ... Default listening port for RealVNC server that runs on the machine on which ... Then there is default Java listening port on port 5800 on the client machine ...
    (microsoft.public.windows.server.sbs)
  • Re: Partial SNAFUs - X11Forwarding etc.
    ... to the base server machine via SSH, or it it also supposed to protect ... back "up the line" to the client machine? ... the ssh server host is compromised or otherwise untrustworthy, ... refrain from running the program via ssh X11 forwarding - there's no ...
    (comp.security.ssh)