Re: Attempting my first port forwarding through SSH

You then fill in 127.0.0.1:5000 in the SOCKS proxy section of your webbrowser, rather than the HTTP proxy section (In IE, click Advanced)..

Hey presto, you're surfing via the remote system with no software on the remote server other than sshd.

Thanks for explaining, I do understand how it works now, it seems like still not working...

This is a screenshot of my Firefox settings:

http://www.imagehut.eu/v.php?id=63125Firefox_ssh_Settings.JPG

This is a screenshot of my Kitty configuration:

http://www.imagehut.eu/v.php?id=23526Kitty_configuration.JPG

I have changed some settings in the Firefox network set up to see if the problem solved, I changed socks5 for socks4 but nothing, and deleted the "No proxy for:localhost" to see if anything worked, but basically the browser still does nothing, I think my Firefox settings are correct.

I am wiling to install a proxy on the VPS if that is what is needed to make it work, I just do not know the package that will do that.

This is a barebones VPS, it had no lynx, no postfix, no alpine, no software at all, it does have lynx now and it can access the internet so no firewall problem.

I thought port forwarding would work out of the box but apparently not. I believe the problem is with the configuration at the VPS.

The dynamic port forwarding was a great idea and I do not know why is not working...

This is my etc/ssh/sshd_config file at the VPS:

---------------------------------------------------
Yunai# vim sshd_config

# Package generated configuration file
# See the sshd(8) manpage for details

# What ports, IPs and protocols we listen for
Port 22
# Use these options to restrict which interfaces/protocols sshd will bind to
#ListenAddress ::
#ListenAddress 0.0.0.0
Protocol 2
# HostKeys for protocol version 2
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key
#Privilege Separation is turned on for security
UsePrivilegeSeparation yes

# Lifetime and size of ephemeral version 1 server key
KeyRegenerationInterval 3600
ServerKeyBits 768

# Logging
SyslogFacility AUTH
LogLevel INFO

# Authentication:
LoginGraceTime 120
PermitRootLogin no
StrictModes yes

RSAAuthentication yes
PubkeyAuthentication yes
#AuthorizedKeysFile %h/.ssh/authorized_keys

# Don't read the user's ~/.rhosts and ~/.shosts files
IgnoreRhosts yes
# For this to work you will also need host keys in /etc/ssh_known_hosts
RhostsRSAAuthentication no
# similar for protocol version 2
HostbasedAuthentication no
# Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
#IgnoreUserKnownHosts yes

# To enable empty passwords, change to yes (NOT RECOMMENDED)
PermitEmptyPasswords no

# Change to yes to enable challenge-response passwords (beware issues with
# some PAM modules and threads)
ChallengeResponseAuthentication no

# Change to no to disable tunnelled clear text passwords
#PasswordAuthentication yes

# Kerberos options
#KerberosAuthentication no
#KerberosGetAFSToken no
#KerberosOrLocalPasswd yes
#KerberosTicketCleanup yes

# GSSAPI options
#GSSAPIAuthentication no
#GSSAPICleanupCredentials yes

X11Forwarding yes
X11DisplayOffset 10
PrintMotd no
PrintLastLog yes
TCPKeepAlive yes
#UseLogin no

#MaxStartups 10:30:60
#Banner /etc/issue.net

# Allow client to pass locale environment variables
AcceptEnv LANG LC_*

Subsystem sftp /usr/lib/openssh/sftp-server

UsePAM yes
----------------------------------------------------------------


.

Relevant Pages

  • sshd and IPv4 forwarding no longer working
    ... I performed a recent upgrade and possibly openssh got upgraded as well. ... but not from another server. ... # To enable empty passwords, ... # Kerberos options ...
    (Ubuntu)
  • OpenSSH 3.6.1p2 Inoperability Issue
    ... I am running a Linux Debian server at home, ... sshd will not accept connections. ... passwords, even if it is correct, is just says access denied. ... # Kerberos TGT Passing only works with the AFS kaserver ...
    (SSH)
  • OpenSSH Assistance - New Admin
    ... The first thing I was told was to upgrade our SSH server. ... # HostKeys for protocol version 2 ... # To enable empty passwords, ... # Kerberos TGT Passing does only work with the AFS kaserver ...
    (comp.os.linux.networking)
  • Re: Cygwin and SSH
    ... # This is the sshd server system-wide configuration file. ... # To disable tunneled clear text passwords, ... # Kerberos TGT Passing only works with the AFS kaserver ...
    (SSH)
  • Re: ISA Server Problems, please help
    ... Based on the rules you have listed, SecureNAT clients should only be allowed ... The All access rule for SBS Internet Users ... Web Proxy and/or Firewall Client ... > header to the publishing server instead of the actual one. ...
    (microsoft.public.windows.server.sbs)