Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
- ssh reverse forwarding - help
February 26, 2004, 6:16 pm
rate this thread
I would like remote users to be able to connect to an SSH server behind
firewall and in a DMZ with a reverse forwarding tunnel configured such that
I can connect to the SSH server from the INSIDE and have it forward the
connection to their machine. That way I can connect via VNC viewer or RDP to
the client machine with some sort of "secure" mechanism. I have successfully
tested reverse forwarding from the Server to Client, but cannot do so with a
Client A --------> SSH server (ssh -R 9000:clientpc_ip:5900 "ssh server
How do I get Client B to connect to SSH server on port 9000 and have it
forward to client_pc port 5900???
I can locally forward from Client A through SSH server to Client B or any
other host/port till I'm blue in the face, but what am I missing going the
other way? I thought reverse forwarding could be done the exact same way
local forwarding works. Do I need to establish two connections, i.e. client
A to SSH and client B to SSH, for this to work? If so, why don't I have to
do the same for local forwarding and could this be accomplished with one
client connection, i.e. client A --> SSH server, and then use IPTables to
forward traffic on specific ports to the ports in the SSH tunnel? any help
is greatly appreciated. Thanks.
- Richard E. Silverman
February 26, 2004, 10:46 pm
Re: ssh reverse forwarding - help
You don't say what your actual problem is, that is, exactly why/how
connecting to the forwarded port fails. You also don't say what SSH
software you're using. However, I'll hazard a guess that you need
"GatewayPorts yes" in the SSH server configuration.
- » ssh on command line: force using a group size (prime size) of 1024 (and no...
- — Newest thread in » Secure Shell Forum