Restrict tunnels?

• Previous message: Neil W Rickert: "Re: SSH login to any remote machine fails"
• Next in thread: Darren Tucker: "Re: Restrict tunnels?"
• Reply: Darren Tucker: "Re: Restrict tunnels?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sun, 19 Dec 2004 02:55:38 +0100

Hi all,

I was looking for an option in openssh to restrict tunneling to allow
tunnels only to some, defined destinations. I do not want to disable
tunneling, but e.g. have tunnels only to machines in a certain subnet,
or to some certain ports.

It seemed that SSH 3.2 commercial included an option, ForwardACL , which
accepted restrictions on what tunnels were allowed.

Neither does Google find any hits on that keyword together with openssh,
  I wasnt even able to find existings threads in this group that came
close about that topic.

I'm aware that there is a kernel module that relates users to their
connections (http://archive.erdelynet.com/ssh-l/2003-05/msg00004.php),
but I think the "cleaner" way was to include that into the sshd setup.

Is there any such functionality in openssh, or do you have another idea
at your fingertips? ;-)

Many thanks in advance,
with best regards
        -hannes

• Previous message: Neil W Rickert: "Re: SSH login to any remote machine fails"
• Next in thread: Darren Tucker: "Re: Restrict tunnels?"
• Reply: Darren Tucker: "Re: Restrict tunnels?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]