Re: tunneling

From: Todd H. (comphelp_at_toddh.net)
Date: 10/18/05 

Date: 18 Oct 2005 13:32:06 -0500

Wolfgang Meiners <WolfgangMeiners01@web.de> writes:

> Nevertheless, i would like to know, if there is a way to achive the
> same result without having a proxy-server to run on the desktop.

Yes. Two options:

laptop$ ssh -L9999:IP.OF.the.ROUTER:80 user@desktop

Here, traffic to the router would be in the clear over the wire
between the desktop and the router. That would work for you provided
the router only requires port 80 communication. I know mine starts
off there, but redirects in various ways to other ports so dynamic
port forwarding might be something you'd dig.

A general proxy is trivial to achieve though using ssh's dynamic port
forwarding option -D (see man page for details).

laptop$ ssh -D 9999 user@desktop

And you just set your laptop's web browser proxy options to use a
socks4 proxy at 127.0.0.1 port 9999 (or whatever port you choose
above).

Web requests to any site you visit from the laptop (including
http://ip.of.router and https://ip.of.router) will appear to originate
the desktop machine. The wireless hop of that request from your
laptop to your desktop will be in the ssh tunnel, and the dynamic port
forwarding magic of the desktop's ssh server will talk to your router
in the clear over port 80, (or ssl encrypted over 443 as called for by
the router's web admin tool), but that potentially unencrypted
communication will be over the wire between the desktop.

HTH

Best Regards, 

-- 
Todd H.
http://www.toddh.net/

Relevant Pages

  • Re: ssh gives "Permission denied, please try again"
    ... It would be possible to arrange that but it's a bit tricky and there are security implications for your network. ... tried to ssh to that but it said port 22 was blocked. ... due to my router; I therefore tried to open ssh access in the router and ...
    (uk.comp.os.linux)
  • Re: what to do with local and remote users for a SBS Network?
    ... First with no real firewall I would at least use two NICs and use RRAS. ... routers at least have some limited port blocking and I would forward ... available I would put External NIC in DMZ or replace Router with inexpensive ... I would setup User 1's Laptop with Outlook over Htttp which gives him his ...
    (microsoft.public.windows.server.sbs)
  • Re: ssh to new ip...
    ... > that once I put it at the isp, I won't be able to ssh to it or anything. ... > windoze box over to it thru my router. ... DHCP has nothing to do with port ... choice is, to your FreeBSD box. ...
    (freebsd-questions)
  • Re: 1 way remote desktop
    ... When you test this over your local LAN, make sure your calling using the private LAN IP of the PC ... Note that port forwarding on the router has no bearing on connecting over the local LAN. ... >>> wireless usb adapter for laptop. ...
    (microsoft.public.windowsxp.work_remotely)
  • Re: Remote works at one local...not the other
    ... the ISP and a Dynamic was assigned by the router or DHCP server. ... What I see from your network is the laptop taking ... My SMC ... SMC range of 10.1.10.10 through 253 and then port frwrd that address into the ...
    (microsoft.public.windowsxp.work_remotely)