Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Steve Beaty
December 12, 2012, 7:49 pm
rate this thread
I'm trying to get a ssh -w VPN working, where I'm not root on the
server, but do have sudo privileges. I've looked around quite a bit
and can't seem to find the correct incantation. It works just fine if
I log in as root. I'm going from an OS X 10.7 box to a CentOS 6 box:
server$ ssh -V
OpenSSH_5.3p1, OpenSSL 1.0.0-fips 29 Mar 2010
client$ ssh -V
OpenSSH_5.6p1, OpenSSL 0.9.8r 8 Feb 2011
I create an endpoint on the server using tunctl:
server# sudo tunctl -u beaty -t tun9
server# sudo ifconfig tun9 10.0.2.2 10.0.2.1 up
tun9 Link encap:UNSPEC HWaddr
inet addr:10.0.2.1 P-t-P:10.0.2.1 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
I have PermitTunnel set to "yes". Here's some output when I try:
client$ sudo ssh -vvv -w 0:9 beaty@server
debug1: Requesting tun unit 0 in mode 1
debug1: sys_tun_open: /dev/tun0 mode 1 fd 5
debug2: fd 5 setting O_NONBLOCK
debug3: fd 5 is O_NONBLOCK
debug1: channel 0: new [tun]
debug1: channel 1: new [client-session]
debug3: ssh_session2_open: channel_new: 1
debug2: channel 1: send open
debug1: Requesting email@example.com
debug1: Entering interactive session.
debug1: Remote: Failed to open the tunnel device.
channel 0: open failed: administratively prohibited: open failed
Any pointers for me? Thanks!
steve firstname.lastname@example.org | http://www.cisl.ucar.edu /
The National Center for Atmospheric Research
Computational and Information Systems Laboratory
- » How do I filter out an IP address from connecting to my router & radio ssh port?
- — Next thread in » Secure Shell Forum
- » ssh on command line: force using a group size (prime size) of 1024 (and no...
- — Newest thread in » Secure Shell Forum