Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: RDP over SSH Tunnel
Special Forums Cybersecurity RDP over SSH Tunnel Post 302716211 by h@foorsa.biz on Tuesday 16th of October 2012 05:08:37 AM
Old 10-16-2012
RDP over SSH Tunnel
Hi all,
I'm trying have an alternative way of connecting into a Corporate network. Mostly in case the VPN down as I cannot also change the security policy.
I want to expose windows RDP over ssh tunnel.
I have 3 hosts in my scenario
1- Host a : Windows 2k8 has no internet access just only an outbound connection on Port 22 TCP .
2-Host b: AIX 5.3 has an ssh server running on it and can initiate outbound TCP connections to any host on the internet.
3-Host C : Solaris 10 has a public static IP and an SSH listening for incoming connections.
All I want is to expose RDP on Host A to Host C which is outside my corporate network How can I do this any Idea will be a great assist.
 

6 More Discussions You Might Find Interesting

1. Programming

using a ssh tunnel with nx compression

hi everybody and thank you for this wondefrul forum this is my first thread posted here and i hope that i could find some help from your part (i am even sure) :D here is the situation: i am to develop an application of remote desktop access such as vnc, vpn and especially nx i want to develop... (0 Replies)
Discussion started by: bolboln01
0 Replies

2. UNIX for Dummies Questions & Answers

SSH tunnel working for ssh but not for sshfs

I'm trying to setup a link between my home pc (work-machine) and a server at work (tar-machine) that is behind a gateway (hop-machine) and not directly accessible. my actions: work-machine$ ssh -L 1234:tar-machine:22 hop-machine work-machine$ ssh -p 1234 user@127.0.0.1 - shh access on... (1 Reply)
Discussion started by: Vathau
1 Replies

3. IP Networking

Help with SSH tunnel?

I have a Java web app on machine (X) that needs to talk to an LDAP server (Y) on :636, but the LDAP server is only accessible on a particular network. I can login to a machine (Z) on that network from X, and this machine can talk to the LDAP server on :636. How can I tunnel so that X can... (2 Replies)
Discussion started by: spacegoose
2 Replies

4. IP Networking

VPN ssh access over RDP port?

Guys, Can I use an open RDP port to gain ssh access to my Linux server running the other side of our firewall? I work from home on the odd occasion, we only have RDP port 3389 available once logged into the VPN. I would rather ssh into my workstation without the need for a desktop display. ... (3 Replies)
Discussion started by: general_lee
3 Replies

5. Solaris

Tunnel X over ssh for 11.3

Hello Solaris experts: Trying to bring the 11.3 gdm screen over ssh to a Linux Box: I did the following: 1. made chanes to /etc/ssh/sshd_config & bounced ssh daemon: # X11 tunneling options X11Forwarding yes X11DisplayOffset 10 X11UseLocalhost yes 2. From the remote Linux box: ... (6 Replies)
Discussion started by: delphys
6 Replies

6. UNIX for Advanced & Expert Users

Tunnel using SSH

I am not clear with the part of concept of Tunneling using ssh. ssh -f -N -L 1029 192.168.1.47:25 james@192.168.1.47 I found out that above code works for me . but didn't quite well understood how ti works and need to ask you guys some questions. since we are using tunnel through ssh ... (2 Replies)
Discussion started by: lobsang
2 Replies

LEARN ABOUT DEBIAN

sslh

SSLH(1p)						User Contributed Perl Documentation						  SSLH(1p)

NAME

       sslh - Switch incoming connection between SSH and SSL/HTTPS servers

SYNOPSIS

       sslh [ -v ] [ -p [host:]port ] [ -t timeout ]
	    [ --ssh [host:]port ] [ --ssl [host:]port ]

DESCRIPTION

       sslh is a simple script that lets you switch an incoming connection on a single port between distinct SSH and SSL/HTTPS servers.

       sslh listens for connections on a port and is able to redirect them either to an HTTPS web server or a SSH server.

       This lets one setup both a HTTPS web server and a SSH server and access them through the same host+port.

OPTIONS

       The program follows the usual GNU command line syntax, with long options starting with two dashes.

       -p, --port [host:]port
	   The port the proxy will listen to.  If no port is given, 443 is used by default.  If no host is given, "localhost" is used by default.

       -s, --ssh [host:]port
	   The SSH server which the SSH connections must be forwarded to.  If omitted, the default is localhost:22.

       -l, --ssl, --https [host:]port
	   The HTTPS server which the HTTPS connections must be forwarded to.  If omitted, the default is localhost:443.

       -t, --timeout delay
	   Timeout in seconds before a silent incoming connection is considered as a SSH connection. The number can be fractional.

	   The default is 2seconds.

       -v, --verbose
	   Verbose output.  This option can be used several times for more verbose output.

EXAMPLE OF USE

       Is this tool actually useful? Yes.

       For example one can use it to access both a SSH server and a secure web server via a corporate proxy that only accepts to relay connections
       to port 443. Creating a tunnel that passes SSH connection through a CONNECT-enabled web proxy is easy with connect-tunnel (also included in
       the "Net::Proxy" distribution).

       The proxy will let both SSH and HTTPS connections out (since they all point to port 443), and the home server will connect those incoming
       connections to the appropriate server. This only requires to run the HTTPS server on a non standard port (not 443).

TECHNICAL NOTE

       How can this proxy find out what kind of protocol is using a TCP connection to port 443, without being connected (yet) to the server?  We
       actually rely on a slight difference between the SSL and SSH protocols (found thanks to ethereal):

       SSH Once the TCP connection is established, the server speaks first, presenting itself by saying something like:

	       SSH-2.0-OpenSSH_3.6.1p2 Debian 1:3.6.1p2-1

       SSL With SSL, it's always the client that speaks first.

       This means that sslh can be used with any pair of protocols/services that share this property (the client speaks first for one and the
       server speaks first for the other).

AUTHORS

       Original idea and C version
	   Frederic Ple "<sslh@wattoo.org>".

       Perl versions
	   Philippe 'BooK' Bruhat "<book@cpan.org>".

SCRIPT HISTORY

       Version 0.01 of the script was a quick hack designed in 2003 as a proof of concept.

       Version 0.02 (and higher) are based on "Net::Proxy", and included with the "Net::Proxy" distribution. Version 0.02 didn't work, though.

       Version 0.03 correctly initialised the "in" connector.

       Version 0.04 lets the proxy listen on any address (instead of "localhost", which is still the default). Thanks to Dieter Voegtli for
       spotting this.

SEE ALSO

       Net::Proxy, Net::Proxy::Connector::dual.

COPYRIGHT

       Copyright 2003-2006, Philippe Bruhat. All rights reserved.

LICENSE

       This module is free software; you can redistribute it or modify it under the same terms as Perl itself.

perl v5.10.1							    2009-10-18								  SSLH(1p)
All times are GMT -4. The time now is 08:45 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy