Re: VPN - TYPE SERVER SUPPORT VIA SSH
From: Kimmo Koivisto (kimmo.koivisto_at_surfeu.fi)
Date: 03/28/05
- Next message: joseph85750_at_yahoo.com: "Re: sshd running with "-R" ?"
- Previous message: david.ehresmann_at_ps.net: "remove Putty from windows"
- In reply to: sed: "VPN - TYPE SERVER SUPPORT VIA SSH"
- Next in thread: sed: "Re: VPN - TYPE SERVER SUPPORT VIA SSH"
- Reply: sed: "Re: VPN - TYPE SERVER SUPPORT VIA SSH"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 28 Mar 2005 21:20:42 +0300
sed wrote:
> Here is what I am trying to achieve with ssh, does anyone have any
> ideas or insights that might help me find a solution for the following:
>
> I have a have a server(linux rh enterprise) located at a customer site
> that I must support that uses an intranet web like application. My
> requirements for support are shell access, file transfer, and the
> ability to run the application(http) for testing. I have no access to
> the firewall between the server and the internet and cannot setup an
> incoming vpn rule.
>
> I had the idea of somehow using ssh from the server behind the firewall
> out to our office server and with some port forwarding configuration,
> then be able to make this work somewhat like a vpn to make this
> customer server accessible to our home office for the protocols
> above(shell(ssh or telnet..etc, file transfer(sftp maybe), and http. I
> want this connection to be secure of course. But the trick here is to
> let the customer server initiate the connection outbound(which I think
> will not require any remote firewall changes). This seems to me to be
> workable. Any suggestions?
Well, ssh with remote forwarded ports should work. You could combine autossh
to this, so the connection always stays up. You could use VPN too, just
force nat-traversal (so only UDP is used) and start the connection from
customer.
But with ssh, from customer server to your office ssh-server, forward port
2080 to customer port 80, forward port 2022 to customer port 22
#ssh -l username office-ssh-server -g -R 2080:customer-server:80 -R
2022:customer-server:22
After this, you should be able to connect from your office to your office
ssh-server port 2080 and be forwarded to the customer server.
Verify the options from manual, I'm not sure about those :)
Regards
Kimmo Koivisto
- Next message: joseph85750_at_yahoo.com: "Re: sshd running with "-R" ?"
- Previous message: david.ehresmann_at_ps.net: "remove Putty from windows"
- In reply to: sed: "VPN - TYPE SERVER SUPPORT VIA SSH"
- Next in thread: sed: "Re: VPN - TYPE SERVER SUPPORT VIA SSH"
- Reply: sed: "Re: VPN - TYPE SERVER SUPPORT VIA SSH"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
