Sponsored Content
Top Forums Shell Programming and Scripting Query regarding PuTTY SSH Tunneling Post 303004041 by drysdalk on Monday 25th of September 2017 04:51:01 PM
Old 09-25-2017
Hi,

Apologies if I'm mis-understanding you here, but I don't think SSH tunneling is quite what you're looking for here. In general, the purpose of SSH tunneling is to map some port on your own local workstation (the system on which the SSH client is running) to some other IP address and/or port on the remote side of the connection (the end on which the SSH server is running).

So, one example (and something I often used to do). Let's say you have an SSH account on unix.acme.com, which is externally accessible via SSH from the Internet. On that same network there is another host, let's say a Windows server called windows.acme.com. You want to RDP into windows.acme.com, but it doesn't have port 3389 (the RDP port) open to the outside world.

One thing you could do in that situation is use an SSH tunnel. So, from your own system (which is neither unix.acme.com nor windows.acme.com, but is something entirely different) you set up an SSH connection to unix.acme.com with a tunnel configured to re-direct, let's say port 3900 on your own local machine to port 3389 on windows.acme.com. You choose 3900 in case there is already something running port 3389 on your own local machine, which if it is typical Windows PC there very well may be (its own RDP listener). You can then RDP to localhost:3900, and your connection is transparently passed through to port 3389 on windows.acme.com, giving you a graphical login session there.

Now the situation you describe is somewhat different. You want to actually re-present to the outside world a service which is running on one port, on to another different port. That's not what SSH tunneling can really be used for. It can only really "connect" a TCP port on your local machine, on which your SSH client is running, to another TCP port either on the remote server or another server to which it has access on its own local network. You are the only one who will ever be able to use the tunnel, as it will exist solely on your own local PC. No-one would ever be able to then use the same port externally to get the service at the remote end in another way.

I hope this makes sense. If I've mis-understood something then I apologise, and if you can explain a bit more about why you feel SSH tunneling is the best solution here for you then I can have another crack at helping you out.

Edit: in terms of an actual solution, this is more a job for the firewall. Firewalls generally offer a way to translate incoming connections on one IP and/or port to another address and/or port. Either that, or just configure the service on dev.techx.com to listen on a different port, or multiple ports.

Last edited by drysdalk; 09-25-2017 at 05:56 PM..
 

10 More Discussions You Might Find Interesting

1. Solaris

ssh tunneling

Hi, I have tried the following: on PC1 (win xp) I have created ssh connection with port forwarding (local 8888 to remote 8888) to server1. >From server1 I have created another ssh connection with port forwarding to server2(local 8888 to remote 1521). When I try to connect to oracle... (3 Replies)
Discussion started by: goran00
3 Replies

2. UNIX for Advanced & Expert Users

SSH Tunneling

Hi all question - there are 2 servers A + B. server A is connected to the internet and running a squid proxy server - server B is behind a firewall. I can ssh from A to B but not from B to A. I need internet access on B to update some files. I thought I could use some sort of ssh tunnel to... (1 Reply)
Discussion started by: silvaman
1 Replies

3. Filesystems, Disks and Memory

Tunneling NFS through SSH????

Hello Folks, Im trying to pass the NFS Shared data through the SSH tunnel. Following are the Steps for my Executions: A) Commands Executed on Server (NFS Server + SSHD Server running) i) share -F nfs -o rw=<NFS Server IP> /home ii) Start the NFS Server Services and SSHD Services. ... (3 Replies)
Discussion started by: ImpeccableCode
3 Replies

4. UNIX for Advanced & Expert Users

tunneling commands and file transfers through established ssh connection

Hi - I frequently run commands, and transfer files to/from a host that uses SecurID ssh authentication. It is a real pain to have to enter the authentication information every time I want to interact with this host. I am wondering if there is a way to establish a one-time ssh connection to this... (2 Replies)
Discussion started by: cpp6f
2 Replies

5. Infrastructure Monitoring

Tunneling UDP via SSH

Performing UDP tunneling through an SSH connection Found this while looking for a way to temporarily forward SNMP requests across otherwise disconnected networks. Might be useful for someone else, too. (1 Reply)
Discussion started by: pludi
1 Replies

6. UNIX for Dummies Questions & Answers

SSH port forwarding/tunneling

So this seems like something that should be simple...but I can't quite seem to get it up and running. I have a machine, .107 with a GUI on port 8443. The problem is that I can't connect directly to .107 from my laptop. Now I have another machine, .69 that can connect to .107. So shouldn't I be able... (4 Replies)
Discussion started by: DeCoTwc
4 Replies

7. Shell Programming and Scripting

Are free public shells for ssh tunneling safe?

Is it secure to use free shells for ssh tunneling? Can the shell provider see and log the sites I visit and passwords I enter? I'm new to this thing and couldn't find info on google :o (5 Replies)
Discussion started by: rafunk
5 Replies

8. UNIX for Advanced & Expert Users

Server access for SSH Tunneling!

Hi! I came to know about SSH Tunneling to bypass the Firewall. I will have to setup a free access SSH server to tunnel data access through PUTTY or OpenSSH. The problem is that I don't know about any free access servers. So, can anyone of you guide me for that, for any type of help? (1 Reply)
Discussion started by: nixhead
1 Replies

9. Shell Programming and Scripting

Get SQL query result to file in putty

How to Get SQL query result to file in putty? I have one SQL query and I want that query output to be redirected to the file. uname -a SunOS XXX 5.8 Generic_117350-58 sun4u sparc SUNW,Sun-Fire-480R Please suggest. (7 Replies)
Discussion started by: pamu
7 Replies

10. UNIX for Dummies Questions & Answers

Ssh tunneling

I want to perform ssh tunnelling for which I have been using PuTTy. Config is as follows: Host IP: 172.XX.XX.111Port: 22Tunnel setting source port: 19005Destination: 172.XX.XX.40:1521After entering my user ID and password, I am able to see in my command prompt that 127.0.0.1:19005 is listening.... (1 Reply)
Discussion started by: aakashsoor
1 Replies
ETHERPUPPET(1)						    BSD General Commands Manual 					    ETHERPUPPET(1)

NAME
etherpuppet -- create a virtual interface from a remote Ethernet interface SYNOPSIS
etherpuppet [-s port] [-c target:port] [-B] [-S] [-M filter] [-C] [-i iface] etherpuppet [-m] [-s port] [-c target:port] [-I iface] DESCRIPTION
etherpuppet is a small program that will create a virtual interface (TUN/TAP) on one machine from the ethernet interface of another machine through a TCP connection. Everything seen by the real interface will be seen by the virtual one. Everything sent to the virtual interface will be emitted by the real one. It has been designed because one often has a small machine as his Internet gateway, and sometimes want to run some big applications that need raw access to this interface, for sniffing (Ethereal, etc.) or for crafting packets that do not survive being reassembled, NATed, etc. When launched with the first syntax, etherpuppet is a slave that will send to its master everything that passes on the given interface. With the second syntax, etherpuppet is the master and will create the special TAP device (whose default name starts with puppet. In both modes, etherpuppet is able to either connect or listen to its slave/master. Traffic seen by the real interface is sent through the TCP connection to the doll interface. Thus, it is important that this connection is not seen by the real interface (or else, we'll have a cute infinite traffic loop). The options are as follows: -s port Listen on the given TCP port. -c ip:port Connect to the slave/master on the given IP/port. -i iface Vampirize the given interface name. -I ifname Choose the name of the virtual interface. -m Master mode. -B Do not use BPF. With this option, etherpuppet may see its own traffic. -S Build BPF with the content of SSH_CONNECTION environment variable. -M src:sp,dst:dp Build manually a BPF filter that will exclude matching traffic in both directions. -C Do not copy real interface parameters to virtual interface. The source and destination are by default the TCP connection end points. If you go through SSH tunneling, you can use the -S option to use SSH_CONNECTION environment variable content instead, so that you will filter out the SSH connection of your current session and not the con- nection to the local SSH tunnel end point (which is pointless). If this still not fit your needs, you can manually specify the connection end points with -M. If you connect two Etherpuppet instances in master mode, you'll get a TCP tunnel through virtual interfaces. If you connect two Etherpuppet instances in slave mode, you may get some kind of inefficient distributed bridge, but more probably, you'll get a big mess. AUTHORS
The etherpuppet program was written by Philippe Biondi <phil@secdev.org>. This manual page was written by Vincent Bernat <bernat@debian.org>, for the Debian project (but may be used by others). BSD
August 7, 2008 BSD
All times are GMT -4. The time now is 04:39 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy