Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Connecting to a remote server
Operating Systems Linux Ubuntu Connecting to a remote server Post 302279274 by linuxjunkie on Thursday 22nd of January 2009 09:37:09 AM
Old 01-22-2009
Your router has got a build in firewall.
The firewall is set to allow connections from a pc on the local network to another pc on the local network. ( This is called forwarding ).


By default your ip firewall is set to deny incomming connections to your local network on some ports. the default ports are thos that are used by windows to connect to shared drives.

This is a very important security feature, if you disable these ports or allow traffic on these ports any one on the internet will be able to access your server if the find your public ip address.

Now if you had mail server on your local network and you wanted people to send mail to it on port 25 (SMTP) then you would set a rule in your firewall to allow incomming traffic on port 25 and to forward it to the internal mail server.

So you sepcify what port you allow traffic on and you specify that it can only go to one specific ip address.

Hope this helped
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Connecting to remote servers

Please advise, The previous thread asked about the automated transfer of files between two servers. The question is - is there any way of encrypting the password within the script or is it a matter of setting the permissions settings on the script so that it can only be executed and possibly... (1 Reply)
Discussion started by: rdbooth
1 Replies

2. Shell Programming and Scripting

connecting to remote db from unix script

Hi everybody, My bash script is trying to connect to a remote database using the 'sqlplus' binary.For this i set(export) the variable TWO_TASK to the value of database name excluding the dot extension part. Can anyone explain me what's the significance of this TWO_TASK variable while... (8 Replies)
Discussion started by: DILEEP410
8 Replies

3. Shell Programming and Scripting

Connecting to remote unix server using java?

I need help writing java code that can connect to a remote unix server, and run a script on that server. I have scoured the internet, but I have been unable to find proper documentation on how this can be accomplished. Any help is appreciated thanks. (1 Reply)
Discussion started by: developncode
1 Replies

4. Red Hat

How to know which application is connecting to a remote host

From a host A an application is trying to connect to host B. From firewall side I can see packets dropped coming from host A to host B. I've access to host A: how can I know which "application" is trying to connect to host B? Thanks, Marco (3 Replies)
Discussion started by: marcopb
3 Replies

5. UNIX for Dummies Questions & Answers

SQL block in a Shell Script connecting to a local and remote DB

Hi All, In a Shell scriipt with a SQL block I want to issue a query against a local DB and a remote DB on a remote server. The shell script is running locally. This is how I connect to the local server. But I want the query to reference remote table in the join. Question can I specify a... (1 Reply)
Discussion started by: daveu7
1 Replies

6. Shell Programming and Scripting

Connecting to remote host

Checking crontab job entry in 3 different hosts Hi Gurus, I am trying to connect to remote host from current host to check crontab entries. I have started like this ssh -n -l db2psp 205.191.156.17 ". ~/.profile >/dev/null 2>/dev/null; cd log ;ls | wc -l" I got this error ? ssh:... (1 Reply)
Discussion started by: rocking77
1 Replies

7. Shell Programming and Scripting

Sudo connect to a remote server and execute scripts in remote server

Hello Every one!! I am trying to write a shell script which will connect to a remote server and execute scripts which are at a certain path in the remote server. Before this I am using a sudo command to change the user. The place where I am stuck is, I am able to connect to the... (6 Replies)
Discussion started by: masubram
6 Replies

8. Shell Programming and Scripting

Error when connecting to remote server to find files with timestamp today's day

I am connecting to remote server and try to check if files with timestamp as Today's day are on the directory. Below is my code TARFILE=${NAME}.tar TARGZFILE=${NAME}.tar.gz ssh ${DESTSERVNAME} 'cd /export/home/iciprod/download/let/monthly; Today=`date +%Y%m%d`; if ;then echo "We... (1 Reply)
Discussion started by: digioleg54
1 Replies

9. Shell Programming and Scripting

Script connect to remote server, not find files and exit only from remote server, but not from scrip

I have a script, which connecting to remote server and first checks, if the files are there by timestamp. If not I want the script exit without error. Below is a code TARFILE=${NAME}.tar TARGZFILE=${NAME}.tar.gz ssh ${DESTSERVNAME} 'cd /export/home/iciprod/download/let/monthly;... (3 Replies)
Discussion started by: digioleg54
3 Replies

10. Programming

Connecting remote SSH server which OSS lib to choose ?

Hey i want to be able to write simple SSH client to be able to connect to SSH server and invoke remote SSH command i found libssh and libssh2 and the old openSSh , what is the best and most supported library to choose from ? i need it to be cross platform . Thanks (0 Replies)
Discussion started by: umen
0 Replies

LEARN ABOUT DEBIAN

nstreams

nstreams(1)							   Users Manuals						       nstreams(1)

NAME

       network streams - a tcpdump output analyzer

SYNOPSIS

       nstreams [ -v ] [ -c nstreams-services ] [ -n nstreams-networks_file ] [ -N [ -i ] [ -I ]] [ -r ] [ -O output [ -D iface ] [ -Y ]] [ -u ] [
       -U ] [ -B ] [ -f tcpdump_file ] [ -l <iface> ] [ tcpdump output ]

DESCRIPTION

       nstreams is a utility designed to identify the IP streams that are occuring on a network from a non-user friendly tcpdump output of several
       megabytes.

       This  is  especially  useful  when you plan to install a firewall but if you do not know the nstreams that the network users are generating
       (http, real audio, and more...).  nstreams can read the tcpdump output directly from stdin, or from a file. It can even generate  the  con-
       figuration file of your firewall, using the  -O option.

OPTIONS

       -c <nstreams-services-file>
	      The  path to an alternate nstreams service file. This file is used to identify each protocol. See the services file section later in
	      this manual page.

       -n <nstreams-networks-file>
	      The path to an alternate nstreams network file. This file is used to identify which hosts belong to which network. See the  networks
	      file section later in this manual page.

       -f <tcpdump output file>
	      The path to the file to read data from. This file must have been generated using 'tcpdump -w filename'.

       -l <iface>
	      Listen directly on interface <iface>. This avoids the use of tcpdump.

       -N     print  the  networks  names instead of the hosts IP addresses. The intra-network traffic will not be shown. Use this option twice to
	      show the networks IP address instead of their names.

       -i     Also show the intra-network traffic (must be used with -N)

       -I     Only show the intra-network traffic (must be used with -N)

       -r     be redundant. That is, the same streams will be printed each time they appear in the dump.

       -v     print version number and exit.

       -O <type>
	      output type. You can use this option to generate your firewall startup script.  Do nstreams -h to see the supported output types.

       -D <iface>
	      interface to apply to output onto. Must be used with -O.

       -Y     The firewall rules that will be generated will deny all packets coming from the outside  trying  to  establish  connections  to  the
	      inside. If you system is not serving anything, then it's safe to turn on this option.

       -u     Do not print the unknown streams

       -U     Only print the unknown streams

       -B     Show broadcasts and networks

USAGE

       Let tcpdump(1) run some time on your network (like one week), and save its output in a file, by doing :
       tcpdump -l -n > output
       or
       tcpdump -w filename

       Then,  feed nstreams with this output file, and it will turn it into a easily-readable file which will help you to write efficient firewall
       filters.  You may also do :
       tcpdump -l -n | nstreams
       or
       nstreams -f filename (if you used tcpdump -w)

THE SERVICES FILE

       The service file contains the description of each protocol, as well as their name. Its syntax is :
       protocol_name:server_port(s)/{udp,tcp}:client_ports(s)
       or :
       protocol_name:type(s)/icmp:code(s)

       Whereas :

       protocol_name
	      is the name of the protocol described. This name may contain any character, including space, except ':'.

       server_port(s)
	      is the range of ports used by the server. Usually, you will want to define one server port only, but you may  enter  any	range  you
	      want.

       ip_protocol
	      is the IP protocol that this protocol is lying onto. Acceptable values are tcp and udp

       client_port(s)

	      is  the  range  of  ports  that  the  client  may  use. You can set this to any or, for more accurate results, to ports ranges, like
	      '1-1024,2048-4096'.
	      The rules are : 'first match, first taken'.

SERVICE FILE EXAMPLE

       Using this syntax, you would declare the ssh protocol by :
       ssh-unix:22/tcp:1000-1023
       Because the Unix version of the ssh client uses a privileged port to connect onto the ssh server which listens on port 22.

THE NETWORKS FILE

       The networks file is used to define sets and subsets of hosts (also known as networks). This avoids redundancy in the output file. The syn-
       tax format for this file is :
       network name:ip/mask
       Whereas	the network name is whatever you want, the IP is the ip of the network, and the mask is the CIDR netmask of the network.  The rule
       is 'first match, first taken'.

NETWORKS FILE EXAMPLE

       admin:192.168.19.0/29
       whole_subnet:192.168.0.0/16
       internet:0.0.0.0/0

LIMITS

       o nstreams can only parse the output of 'tcpdump -n'

       o Even though the output of nstreams is easier to read than the one of tcpdump, it is still not easily readable. Use sort(1) on the nstream
       output to get a more readable file.

       o This program could have been written in perl

FILES

       /etc/nstreams-services
       /etc/nstreams-networks

SEE ALSO

       tcpdump(1)

AUTHORS

       Concept : Herve Schauer Consultants - http://www.hsc.fr
       Coding : Renaud Deraison <deraison@cvs.nessus.org>

BUG REPORTS

       Please send all your bug reports with the detail of your configuration to Renaud Deraison <deraison@cvs.nessus.org>

nstreams							     July 1999							       nstreams(1)
All times are GMT -4. The time now is 12:42 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy