Getting access to entire remote network with SSH
- From: "Felix E. Klee" <fk@xxxxxxxxxxxx>
- Date: Thu, 27 Apr 2006 15:04:05 +0200
Consider the following scenario:
(192.168.0.0/24)--[firewall, NAT-router]----(Internet)
(192.168.5.0/24)--[firewall, NAT-router with SSH access]--(Internet)
All computers in 192.168.0.0/24 and in 192.168.5.0/24 run under LINUX.
Using SSH port forwarding, it's simple to map e.g. 192.168.5.1:5900
to 192.168.0.20:1500, so that 192.168.5.1:5900 can be accessed (via
192.168.0.20:1500) from any computer in 192.168.0.0/24. But this is not
very comfortable.
Now, what tools are there which allow us to map selected ports from
selected computers in 192.168.5.0/24 to "virtual hosts" visible to the
computers in 192.168.0.0/24?
A made up example telling you roughly what we're after:
192.168.0.20# telnet 192.168.5.1 5900
Trying 192.168.5.1...
telnet: connect to address 192.168.5.1: Network is unreachable
192.168.0.20# connect_to 192.168.5.0/24 via remote_net.dyndns.org
192.168.0.20# telnet 192.168.5.1 5900
Trying 192.168.5.1...
Connected to foo.
Escape character is '^]'.
RFB 003.003
The program "connect_to" should set up all the port mapping and all the
routing. It would be OK, though, if it is necessary to configure it on a
per "remote network" basis, e.g. to tell it what ports at which hosts on
the remote network are needed
--
Dipl.-Phys. Felix E. Klee
Email: fk@xxxxxxxxxxxx (work), felix.klee@xxxxxxx (home)
Tel: +49 721 8307937, Fax: +49 721 8307936
Linuxburg, Goethestr. 15a, 76135 Karlsruhe, Germany
.
- Follow-Ups:
- Re: Getting access to entire remote network with SSH
- From: Darren Tucker
- Re: Getting access to entire remote network with SSH
- Prev by Date: openssh 4.3p2 connection closed problem
- Next by Date: Re: Force non-empty pass-phrase?
- Previous by thread: openssh 4.3p2 connection closed problem
- Next by thread: Re: Getting access to entire remote network with SSH
- Index(es):
Relevant Pages
|
|
